Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 08.10.2018, 10:12   #1
MattiSchl
 
Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden - Standard

Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden



Hallo,
nachdem ich am 6.10. einige Tausend Mails eines uralten Mail-Accounts abgerufen hatte, habe ich mir leider auch Einiges eingefangen, ich habe aber keinerlei Anhänge geöffnet. Kaspersky meldete mehrere Sachen und ich habe auch jeweils alles brav gelöscht / bin den Empfehlungen gefolgt.
Nun hatte ich noch mehrere Malware Programme Trojaner / Backdoors, deren "Beseitigung" bei Kaspersky scheinbar überhaupt nichts bewirkte.

Ich habe daraufhin von Kasperky KVRT.exe heruntergeladen und laufen gelassen - 0 Bedrohungen.
Dann mb3-setup-consumer-3.6.1.2711-1.0.463-1.0.7197.exe - 176 Bedrohungen (das meiste war in Firefox, alles war nur "gelb" und es sah für mich recht harmlos aus). Nach dem Reboot meldet Kasperksy Internet Security 2013 immer noch Malware, nach einem Klick erhalte ich aber leider keine Liste mehr, sondern nur noch "Keine Probleme vorhanden".
Der Bericht sah so aus:
Code:
ATTFilter
Typ: Unbekannt (15)	
38banister.zip	Desinfiziert	06.10.2018 12:31:18	[From:"Tino Nadler" <tinnadl447@aol.com>][Subject:Als Anlage erhalten Sie fcawu][Time:2015/11/18 08:59:31]//	38banister.zip	
daniell38.zip	Desinfiziert	06.10.2018 12:30:32	[From:"Ullrich Roch" <ull_roc701@aol.com>][Subject:Beigelegt kriegen Sie faxzfh][Time:2015/12/01 11:41:20]//	daniell38.zip	
New Doc 115.docm	Desinfiziert	06.10.2018 12:29:31	[From:"admin" <ale73_894761@yahoo.com>][Subject:[Richtlinie: Potentially Dangerous File Attachments removed]New Doc 41][Time:2016/02/17 18:13:33]//	New Doc 115.docm	
New Doc 115.docm	Desinfiziert	06.10.2018 12:29:31	[From:"admin" <ale73_293@yahoo.com>][Subject:New Doc 607][Time:2016/02/18 04:01:56]//	New Doc 115.docm	
New Doc 115.docm	Desinfiziert	06.10.2018 12:29:31	[From:"admin" <ale73_94794@yahoo.com>][Subject:[Richtlinie: Potentially Dangerous File Attachments removed]New Doc 185][Time:2016/02/17 18:15:51]//	New Doc 115.docm	
New Doc 115.docm	Desinfiziert	06.10.2018 12:29:31	[From:"admin" <ale73_30953@yahoo.com>][Subject:[Richtlinie: Potentially Dangerous File Attachments removed]New Doc 6216][Time:2016/02/17 18:12:27]//	New Doc 115.docm	
fax_20160224_102402_0493365176.zip	Desinfiziert	06.10.2018 12:29:24	[From:"sipgate" <noreply@bounce.sipgate.de>][Subject:Neues Fax von 034205-998306][Time:2016/02/24 13:48:13]//	fax_20160224_102402_0493365176.zip	
3088F_ms_516B15.zip	Desinfiziert	06.10.2018 12:28:28	[From:"Karla Osborne" <OsborneKarla0620@onenet.cw>][Subject:Requested receipt ID:516B15][Time:2016/03/29 14:19:18]//	3088F_ms_516B15.zip	
amias99.zip	Desinfiziert	06.10.2018 12:28:09	[From:"WhatsApp" <auxiliar.servicio@mico.com.mx>][Subject:Un emilio oíble breve se ha descargado.][Time:2016/04/22 04:56:41]//	amias99.zip	
dacre44.zip	Desinfiziert	06.10.2018 12:25:30	[From:"Juan Ignacio Acedo" <reza@tvsl-bd.com>][Subject:Se adjunta la documentación explicativa][Time:2016/09/09 04:11:07]//	dacre44.zip	
humphry17.zip	Desinfiziert	06.10.2018 12:25:23	[From:"Amazon" <aurel.constantinescu@totalconfort.ro>][Subject:¡Ha recibido un cupón!][Time:2016/09/15 09:34:10]//	humphry17.zip	
IMG-50976450-WA0641.zip	Desinfiziert	06.10.2018 12:24:37	[From:"KRISTIN" <kristin.750@***.de>][Subject:Photo from office][Time:2016/11/23 06:01:51]//	IMG-50976450-WA0641.zip	
7658527162.zip	Desinfiziert	06.10.2018 12:23:30	[From:<deborah_wood@dwainc.com>][Subject:][Time:2017/01/13 16:02:04]//	7658527162.zip	
098797.zip	Desinfiziert	06.10.2018 12:22:56	[From:<deborah_wood@dwainc.com>][Subject:][Time:2017/03/06 07:44:29]//	098797.zip	
63313270.zip	Desinfiziert	06.10.2018 12:22:12	[From:<deborah_wood@dwainc.com>][Subject:46554 maud.schlich][Time:2017/03/23 07:59:53]//	63313270.zip	
Typ: trojanisches Programm (12)	
HEUR:Trojan-Downloader.Script.Generic	Inaktiv	06.10.2018 12:28:44	[From:"Filip Mision" <filipmision@gmail.com>][Subject:Delivery Note 25][Time:2016/03/04 23:58:31]//text/plain//DELIVERY NOTE 25.zip//	GCC6359641104.js	
HEUR:Trojan-Downloader.Script.Generic	Inaktiv	06.10.2018 12:28:43	[From:"Filip Mision" <filipmision@gmail.com>][Subject:Delivery Note 25][Time:2016/03/05 00:02:26]//text/plain//DELIVERY NOTE 25.zip//	VWZ2396776011.js	
HEUR:Trojan.Win32.Generic	Gelöscht	06.10.2018 12:25:30	[From:"Juan Ignacio Acedo" <reza@tvsl-bd.com>][Subject:Se adjunta la documentación explicativa][Time:2016/09/09 04:11:07]//dacre44.zip//teddy.exe//	#	
HEUR:Trojan-Downloader.Script.Generic	Gelöscht	06.10.2018 12:23:30	[From:<deborah_wood@dwainc.com>][Subject:][Time:2017/01/13 16:02:04]//7658527162.zip//3935_ZIP.zip//3935.doc//	ThisDocument	
HEUR:Trojan.Script.Agent.gen	Gelöscht	06.10.2018 12:22:56	[From:<deborah_wood@dwainc.com>][Subject:][Time:2017/03/06 07:44:29]//098797.zip//27779_ZIP.zip//27779.doc//	ThisDocument	
HEUR:Trojan.Script.Agent.gen	Inaktiv	06.10.2018 12:19:05	[From:<noreply@***.de>][Subject:Scanned image from MX-2600N][Time:2017/09/27 18:43:24]//20170927_735627.7z//	20170927_916766.vbs	
Trojan-PSW.Win32.Fareit.egqn	Inaktiv	06.10.2018 12:14:05	[From:"TNT EXPRESS INC" <doskas@pot.gr>][Subject:TNT Consignment Details][Time:2018/08/02 14:34:50]//Scan Copy_pdf.gz//	Scan Copy_pdf.exe	
Trojan-PSW.Win32.Fareit.eiit	Inaktiv	06.10.2018 12:13:59	[From:"Blockchain.info" <admin@sdchemlanka.com>][Subject:BLOCKCHAIN SECURITY ALERT][Time:2018/08/28 15:14:07]//Scan Document_pdf.gz//	Scan Document_pdf.exe	
Trojan-PSW.Win32.Fareit.eilz	Inaktiv	06.10.2018 12:13:58	[From:"DHL EXPRESS" <support@dhl.com>][Subject:DHL Shipment Notification : 8808818255][Time:2018/08/29 15:41:28]//DHL Receipt_pdf.gz//	XXXX.exe	
Backdoor.Win32.Androm.qkex	Inaktiv	06.10.2018 12:13:46	[From:"Moore Stacy" <sales@organoasia.com>][Subject:RE: ACH Payment request][Time:2018/09/25 13:38:12]//SWIFT_pdf.gz//	sapnewfile_pdf.exe	
HEUR:Trojan.MSIL.Miner.gen	Inaktiv	06.10.2018 12:13:45	[From:"Sook Teng" <p_mahmoudi@gep.usb.ac.ir>][Subject:RE:Pass Multimedia Pte Ltd_Statement of Account][Time:2018/10/02 04:59:22]//Scan Documents_pdf.gz//	eeeeee.exe	
HEUR:Backdoor.MSIL.Remcos.gen	Inaktiv	06.10.2018 12:13:44	[From:"TNT EXPRESS INC" <support@tnt.com>][Subject:TNT Shipment Status][Time:2018/10/03 00:49:03]//Scan Document_pdf.gz//	Scan Document_pdf.exe	
Typ: Phishing-Link (4)	
Schädlicher Link	Inaktiv	06.10.2018 12:51:21	hxxp://ada.biz.ua/		
Schädlicher Link	Inaktiv	06.10.2018 12:38:12	hxxp://nabrotzky.org/Rechnung/		
Schädlicher Link	Inaktiv	06.10.2018 12:36:25	https://bit.do/	dSBTG	
Schädlicher Link	Inaktiv	06.10.2018 12:14:53	hxxp://homesteadbenefits.com/		
Typ: Adware (1)	
not-a-virus:HEUR:AdWare.Win32.Generic	Inaktiv	06.10.2018 12:29:48	[From:"Amazon" <stawfik@shorouk.com>][Subject:Sie haben einen Gutschein bekommen!][Time:2016/01/25 12:56:41]//bram26.zip//	mamie.exe
         
FRST meldet in Addition.txt:
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 06.10.2018
durchgeführt von ** ** (08-10-2018 10:15:18)
Gestartet von C:\SW-Installs_Neu
Windows 7 Home Premium Service Pack 1 (X64) (2012-11-17 09:26:54)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-606261689-216238225-4133565063-500 - Administrator - Disabled)
Atminn (S-1-5-21-606261689-216238225-4133565063-1004 - Administrator - Enabled) => C:\Users\Atminn
** (S-1-5-21-606261689-216238225-4133565063-1006 - Limited - Enabled) => C:\Users\**
Gast (S-1-5-21-606261689-216238225-4133565063-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-606261689-216238225-4133565063-1003 - Limited - Enabled)
** ** (S-1-5-21-606261689-216238225-4133565063-1001 - Administrator - Enabled) => C:\Users\** **

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 28.0.0.127 - Adobe Systems Incorporated)
Adobe Connect (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Adobe Connect App) (Version: 11.9.985.57 - Adobe Systems Inc.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.8 - Adobe Systems Incorporated)
Adobe Flash Player 26 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 26.0.0.131 - Adobe Systems Incorporated)
Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
Adobe FrameMaker v7.0 (HKLM-x32\...\Adobe FrameMaker 7.0) (Version: 7.0 - Adobe Systems, Inc.)
Ahnenblatt 2.98 (HKLM-x32\...\Ahnenblatt_is1) (Version: 2.98.1.1 - Dirk Böttcher)
Akamai NetSession Interface (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
Amazon Kindle (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Amazon Kindle) (Version: 1.16.0.44025 - Amazon)
Amazon Music (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Amazon Amazon Music) (Version: 3.10.0.928 - Amazon Services LLC)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 378.92 - NVIDIA Corporation) Hidden
ANT Drivers Installer x64 (HKLM\...\{3DE56A70-06BA-4863-8FBB-45D041AF0C7A}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Articulate Photographic Characters Pack 1 (HKLM-x32\...\{6F39B67B-5A19-46EC-BB9F-A88C2F2D9730}) (Version: 1.00 - Articulate)
Articulate Replay (HKLM-x32\...\{0627EF4D-BDA1-4F9E-9F47-DDCBD3DED755}) (Version: 1.20.00 - Articulate) Hidden
Articulate Replay (HKLM-x32\...\{3E5131E9-1241-4E43-8036-E870C0DE3012}) (Version: 1.30.00 - Articulate)
Articulate Storyline 2 (HKLM-x32\...\{9ea0a513-11b6-488a-a48c-03eaf0dbcd7f}) (Version: 2.12.336.0 - Articulate)
Articulate Studio '13 (HKLM-x32\...\{0069B190-F534-498E-A198-DB54C537A102}) (Version: 4.00.13 - Articulate) Hidden
Articulate Studio '13 (HKLM-x32\...\{3E5131E9-1241-4E43-8036-E870C0DE2012}) (Version: 4.9.00 - Articulate)
Articulate Studio '13 (HKLM-x32\...\{63576F00-E9D5-4E36-BB10-62634946CFBF}) (Version: 4.00.13 - Articulate) Hidden
Articulate Studio '13 (HKLM-x32\...\{8B9F1CA9-BD27-47A3-9816-BC5E04A5B99B}) (Version: 4.00.13 - Articulate) Hidden
Articulate Studio '13 (HKLM-x32\...\{8E5D5564-3A8A-426E-A21E-EC20A76B6E46}) (Version: 4.00.13 - Articulate) Hidden
Articulate Studio '13 (HKLM-x32\...\{98A03512-6A00-4DD1-90C3-FA9D0D781D0F}) (Version: 4.00.13 - Articulate) Hidden
Articulate Studio '13 (HKLM-x32\...\{EBB66BC4-94CF-45C4-AC03-99EA9AB422B7}) (Version: 4.00.13 - Articulate) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 2005744894.48.56.34674042 - Audible, Inc.)
AuthenTec TrueSuite (HKLM\...\{C76FAAED-E66D-488A-9E15-6082B527814A}) (Version: 5.2.0.642 - AuthenTec, Inc.)
Auto-Mate Pro 7.0 (HKLM-x32\...\{B14BB105-E617-4C91-9A01-35B26CEC8F64}) (Version: 7.0.0 - Pergenex Software)
Bamboo Dock (HKLM-x32\...\{90DFD61B-8224-00C6-3D69-A983B60A394E}) (Version: 4.1.0 - Wacom Europe GmbH) Hidden
Bamboo Dock (HKLM-x32\...\Bamboo Dock) (Version: 4.1 - Wacom Co., Ltd.)
Bamboo Dock (HKLM-x32\...\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1) (Version: 4.1.0 - Wacom Europe GmbH) Hidden
Bamboo Tablets Tutorial (HKLM-x32\...\{6E0C3C3D-CF8A-4AEC-AD6C-B4486A96BE8E}) (Version: 3.0.20 - Wacom) Hidden
BisonCam (HKLM-x32\...\{5BBC4803-C96E-4D3E-9D1D-2E43774C4062}) (Version:  - BisonCam)
Blackboard Collaborate Launcher (HKLM-x32\...\{AEED1D32-C837-405A-8009-6660E3883C9E}) (Version: 1.6.4.0 - Blackboard)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
Brother MFL-Pro Suite MFC-J625DW (HKLM-x32\...\{A1B36B88-AF90-43A3-8906-6DBEE89B4FBD}) (Version: 1.0.10.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform)
Cisco WebEx Meetings (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Citavi 5  (HKLM-x32\...\{7EB278FB-0C3C-445E-8665-4A6CDD9B794E}) (Version: 5.7.0.0 - Swiss Academic Software)
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.1.0.0 - Citrix Systems, Inc.)
CopyPathMenu (HKLM-x32\...\{3709AF9C-DCB2-4D5D-9F60-F21CCBC65D80}) (Version: 4.0.0 - MartinStoeckli)
Cover Druckstudio (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\8683d3b33b8fce2e) (Version: 2.0.0.7 - FriedelSoft)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dacia Media Nav Toolbox (HKLM-x32\...\Dacia Media Nav Toolbox) (Version: 3.18.5.647040 - NNG Llc.)
Designer 2.0 (HKLM-x32\...\Designer 2.0_is1) (Version: 7.9.8 - Fomanu AG)
Dropbox (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Dropbox) (Version: 58.4.92 - Dropbox, Inc.)
Elevated Installer (HKLM-x32\...\{B7768089-44E1-4B51-9213-737959C689E5}) (Version: 6.3.0.0 - Garmin Ltd or its subsidiaries) Hidden
e-motional Images Screen Saver 6.05 (HKLM-x32\...\e-motional Images Screen Saver_is1) (Version:  - e-motional.com software)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - )
eReg (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Evernote (HKLM-x32\...\{D9FE1AFC-8C6D-484F-B3FD-E50780153234}) (Version: 4.5.1 - Evernote) Hidden
FileZilla Client 3.33.0 (HKLM-x32\...\FileZilla Client) (Version: 3.33.0 - Tim Kosse)
Foldit (HKLM-x32\...\Foldit) (Version:  - )
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.0_RC_5 - )
FRITZ!Box USB-Fernanschluss (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\195fa74437467f40) (Version: 2.3.4.0 - AVM Berlin)
Garmin BaseCamp (HKLM-x32\...\{AC816FE8-3022-404F-8BE4-A07B5586F4E3}) (Version: 4.2.4 - Garmin Ltd or its subsidiaries)
Garmin City Navigator Europe (Unicode) NT 2014.30 Update (HKLM-x32\...\{B68ACA3B-142D-45A0-8EDA-015493E571DF}) (Version: 17.30.0.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{aa902576-9ab8-4371-98d1-efde885f775b}) (Version: 6.3.0.0 - Garmin Ltd or its subsidiaries)
Garmin Express Tray (HKLM-x32\...\{C6C8A534-050C-40E9-92FC-4D06A8A487C8}) (Version: 6.3.0.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Getting Things Done Outlook Add-In (HKLM-x32\...\{D9ACA6BD-10A3-40C5-AE17-6B6AD4F50FEE}) (Version: 3.3.22 - NetCentrics Corporation)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Git version 2.17.1.2 (HKLM\...\Git_is1) (Version: 2.17.1.2 - The Git Development Community)
GlobalMeet Desktop Tools (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\GlobalMeet Desktop Tools) (Version: 1.0.1 - Premiere Global Inc)
GlobalMeet for Desktop (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\GlobalMeet for Desktop) (Version: 2.4.1 - Premiere Global Inc)
GlobalMeet Outlook Toolbar (HKLM-x32\...\{79B960F3-40B2-45E9-83D6-C2FADC7A0383}) (Version: 11.7.0 - PremiereGlobal)
GlobalMeet ScreenShare (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\GlobalMeet ScreenShare) (Version: 10.1.16 - PGi)
GNU Solfege 3.22.2 (HKLM-x32\...\GNU Solfege_is1) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoTo Opener (HKLM-x32\...\{8B2D47CC-1558-4939-B27F-41E30530072A}) (Version: 1.0.467 - LogMeIn, Inc.)
GoToMeeting 8.35.1.10750 (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\GoToMeeting) (Version: 8.35.1.10750 - LogMeIn, Inc.)
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.07) (Version: 9.07 - Artifex Software Inc.)
Hotkey 6.0062 (HKLM-x32\...\{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 6.0062 - NoteBook) Hidden
Hotkey 6.0062 (HKLM-x32\...\InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 6.0062 - NoteBook)
Intel Extreme Tuning Utility (HKLM-x32\...\{7C27BE5A-858E-465C-91BD-B14016D4620A}) (Version: 3.1.5.0 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.1.1399 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{538B98C3-773F-4F20-9C66-802D104DCBE2}) (Version: 1.23.219.2 - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\3FD0C489-0F02-481a-A3E1-9754CD396761) (Version:  - Intel Corporation)
iTunes (HKLM\...\{BFEAB774-C7DC-4032-B05A-DA5F7CB7B365}) (Version: 12.2.2.25 - Apple Inc.)
Ixquick Deskbar (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\ixquickDB.ixquickDBDeskbar) (Version:  - )
Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.23.01 - JMicron Technology Corp.)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Internet Security 2013 (HKLM-x32\...\{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab) Hidden
Kaspersky Internet Security 2013 (HKLM-x32\...\InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab)
Kindersicherung 2018 (HKLM-x32\...\Salfeld-Kindersicherung_is1) (Version:  - )
K-Lite Codec Pack 9.8.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.8.5 - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LastPass (Nur deinstallieren) (HKLM-x32\...\LastPass) (Version:  - LastPass)
LinkedIn Outlook Connector (HKLM\...\LinkedIn Outlook Connector) (Version: 1.1.10.0 - LinkedIn)
LinkedIn Outlook Connector (HKLM-x32\...\LinkedIn Outlook Connector) (Version: 1.1.10.0 - LinkedIn)
LiveUpdate 3.2 (Symantec Corporation) (HKLM-x32\...\LiveUpdate) (Version: 3.2.0.68 - Symantec Corporation)
Logitech Harmony Remote Software (x86) (HKLM-x32\...\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}) (Version: 2.0 - Logitech)
Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Lookeen Version 8.3.1.5156 (HKLM-x32\...\6D7E910F-716D-41E2-98A4-29691C352C1A_is1) (Version: 8.3.1.5156 - Axonic)
Malwarebytes Version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Media Go (HKLM-x32\...\{C9ACDF2C-F9A5-4F17-A6FA-97FF908DC4AA}) (Version: 3.0.278 - Sony)
Media Go Network Downloader (HKLM-x32\...\{C52148B9-19E0-433A-9422-3451B1BEE20F}) (Version: 1.6.01.0 - Sony)
Media Go Video Playback Engine 2.20.105.05220 (HKLM-x32\...\{77B3BF4C-1376-60BA-DBE7-932199ED6219}) (Version: 2.20.105.05220 - Sony)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2010 Primary Interop Assemblies (HKLM-x32\...\{90140000-1146-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1150 - Microsoft Corporation)
Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
MOBackup - Datensicherung für Outlook (Vollversion) (HKLM-x32\...\MOBackup-DatensicherungfürOutlook) (Version: 7.50 - Heiko Schröder)
Mozilla Firefox 62.0 (x64 de) (HKLM\...\Mozilla Firefox 62.0 (x64 de)) (Version: 62.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.3 - Mozilla)
MP3 Skype recorder (HKLM-x32\...\{4D72B856-3F01-4501-BDDE-7B62098FF7C7}) (Version: 4.39.1.0 - Domit LTD)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MuseScore 2 (HKLM-x32\...\{0317B5F7-01A3-4640-A491-456B453CCAB3}) (Version: 2.2.1 - Werner Schweer and Others)
Musicnotes Player V1.40.3 and Viewer V1.20.0 (HKLM-x32\...\Musicnotes Player_is1) (Version: 1.40.3 - Musicnotes Inc.)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.9 - F.J. Wechselberger)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
Network Recording Player (HKLM-x32\...\{A06A97C0-6955-4B32-8A24-2FC8BB84D7F4}) (Version: 32.2.2.6 - Cisco WebEx LLC)
Norton Ghost (HKLM-x32\...\{B0255743-165B-4BD5-8DA8-37DFB9930015}) (Version: 15.0.1.36526 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.3.2 - Notepad++ Team)
Nuance PaperPort 12 (HKLM-x32\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.6.1.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Online Plug-in (HKLM-x32\...\{F390D923-76F1-458E-8218-8C0C156CDCFD}) (Version: 14.1.0.0 - Citrix Systems, Inc.) Hidden
Oracle Database 11g Express Edition (HKLM\...\{05A7B662-80A3-4EB9-AE1D-89A62449431C}) (Version: 11.2.0 - Oracle Corporation) Hidden
Oracle Database 11g Express Edition (HKLM-x32\...\InstallShield_{05A7B662-80A3-4EB9-AE1D-89A62449431C}) (Version: 11.2.0 - Oracle Corporation)
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 1.00.0001 - Nuance Communications, Inc.)
PhraseExpress v9.1.36 (HKLM-x32\...\PhraseExpress_is1) (Version: 9.1.36 - Bartels Media GmbH)
PowerArchiver 2018 (HKLM\...\PowerArchiver_is1) (Version: 18.00.57 - ConeXware, Inc.)
PowerArchiver Outlook Plug-in (HKLM-x32\...\{8797A586-87D6-46BF-875E-AB7F48056087}) (Version: 2.40.03 - ConeXware, Inc.)
PowerLearning Mathematik 5 (HKLM-x32\...\PowerLearning Mathematik 5) (Version:  - )
Power-user (HKLM-x32\...\{E9871CDB-2008-475E-9A8D-F7383C11182E}) (Version: 1.6.357 - Power-user)
Python 3.7.0 (32-bit) (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\{ece37911-ffeb-4f29-95d6-abcf555d7364}) (Version: 3.7.150.0 - Python Software Foundation)
Python 3.7.0 Add to Path (32-bit) (HKLM-x32\...\{1960E5AE-BA13-4FA1-B0CE-55B9F0291903}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Core Interpreter (32-bit) (HKLM-x32\...\{13BB06D9-FD38-47E5-946E-C2606C554030}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Development Libraries (32-bit) (HKLM-x32\...\{B424BE74-3C96-4974-8754-9D6442286112}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Documentation (32-bit) (HKLM-x32\...\{ABEE159E-FE5B-4E58-BDD7-1DED2F10AAEB}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Executables (32-bit) (HKLM-x32\...\{4642A126-F999-4407-801B-C1C89BDA58C5}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 pip Bootstrap (32-bit) (HKLM-x32\...\{69CFC76B-3434-4919-8885-BA7960725137}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Standard Library (32-bit) (HKLM-x32\...\{09160A5D-8B99-4A89-9E9D-8A6D8E9C7EC1}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Tcl/Tk Support (32-bit) (HKLM-x32\...\{8A09EA6B-C86C-4ECA-8742-C4C1BCA96845}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Test Suite (32-bit) (HKLM-x32\...\{717DB3B4-C457-447B-A8A6-6921A4D917EF}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Utility Scripts (32-bit) (HKLM-x32\...\{FC756D1E-1252-406E-8414-E11FAF97F3C7}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{D6BDDB48-938A-4384-A7BE-2B4E4931B111}) (Version: 3.7.6386.0 - Python Software Foundation)
Qualcomm Atheros Killer Network Manager (HKLM\...\{DF446558-ADF7-4884-9B2D-281979CCE71F}) (Version: 6.1.0.395 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager (HKLM-x32\...\InstallShield_{DF446558-ADF7-4884-9B2D-281979CCE71F}) (Version: 6.1.0.395 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.147 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.58.411.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version:  - )
Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
RuneScape Launcher 2.2.4 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.4 - Jagex Ltd)
Scansoft PDF Professional (HKLM-x32\...\{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}) (Version:  - ) Hidden
ScreenShare Helper (HKLM-x32\...\{CD9EBE0A-BEA9-43ED-BDBF-971E613BE9A7}) (Version: 1.1.3 - PGi)
Self-Service Plug-in (HKLM-x32\...\{47117FCA-0D00-4B6D-9D68-00B763629463}) (Version: 4.1.0.41738 - Citrix Systems, Inc.) Hidden
Sennheiser 3D G4ME1 (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392DDDFB6}) (Version: 1.00.0001 - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
ShellExtensionx64 (HKLM\...\{3097AA65-A3EC-49F0-B2BC-4FA3917AF8D8}) (Version: 2.12.336.0 - Articulate) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden
simple-fax.de Version 2.0.1 (HKLM-x32\...\{7343767F-D225-4EB2-87B8-173451445F45}_is1) (Version: 2.0.1 - simple-fax.de)
Skype Meetings App (HKLM-x32\...\{E8E6D26B-382E-43C8-91BA-AB8DF2CD0C10}) (Version: 16.2.0.194 - Microsoft Corporation)
Skype Version 8.22 (HKLM-x32\...\Skype_is1) (Version: 8.22 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\slack) (Version: 3.3.3 - Slack Technologies)
SmartTools Publishing • Outlook Attachment AutoSave (HKLM-x32\...\SmartToolsAttachment AutoSavev4.00) (Version: v4.00 - SmartTools Publishing)
SPEEDLINK STRIKE NX Gamepad (HKLM-x32\...\SPEEDLINK STRIKE NX Gamepad) (Version:  - )
Spotify (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Spotify) (Version: 1.0.89.313.g34a58dea - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Storyboarder 1.5.1 (HKLM\...\527a63cd-e2d3-5c49-af18-16603aef72c9) (Version: 1.5.1 - Wonder Unit Inc.)
Storyline (HKLM-x32\...\{38428D06-8243-4BEA-B7B3-7EE60B1B408A}) (Version: 2.12.336.0 - Articulate) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.14.0 - Synaptics Incorporated)
SyncFileSetup (x86) (HKLM-x32\...\{04848A0A-02B1-4703-B15D-6E7DCF95FB84}) (Version: 1.3.5949.26210 - Western Digital Technologies, Inc) Hidden
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.65452 - TeamViewer)
Textbausteinverwaltung Outlook Add-In v9.0.2 (HKLM-x32\...\Textbausteinverwaltung Outlook Add-In_is1) (Version: 9.0.2 - Bartels Media GmbH)
THX TruStudio Pro (HKLM-x32\...\{82F99DC9-389A-4528-940C-88248731A620}) (Version: TAMB-CVS1D-1-LB R07 - Creative Technology Limited)
tiptoi® Manager 3.1.8 (HKLM-x32\...\9978-5763-2995-5228) (Version: 3.1.8 - Ravensburger AG)
Transparent Screen Lock BIO v5.47 (HKLM-x32\...\Transparent Screen Lock BIO_is1) (Version: 5.47 - e-motional.com software)
Universal Driver (HKLM-x32\...\{6ACD853B-9035-40FD-B870-0891D6405240}) (Version: 1.00.0000 - OKI® Printing Solutions)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.3.18-3 - Wacom Technology Corp.)
WD My Cloud (HKLM\...\{4B86F896-11DC-4711-BB60-81104832FA44}) (Version: 1.0.7.17 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{2CE08B2D-856C-47D9-9F6A-BC691911BCD9}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{B11B695F-B5BF-4667-8291-682B3A73B5F8}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{4555885d-a64c-4234-9aac-72a8a6b5590b}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.)
WD Sync (HKLM-x32\...\{0d591303-bbc5-4645-a03b-1c3f75f1a762}) (Version: 1.3.5949.26210 - Western Digital Technologies, Inc.)
WebCam Installer (HKLM-x32\...\{2A14D7BC-1876-4B38-830B-18856C27F550}) (Version: 4.04 - WebCam) Hidden
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.4 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.3 - Wacom Technology Corp.)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM  (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
XING Connector 1.2 (HKLM-x32\...\XING Connector) (Version: 1.2 - XING AG)
XING Outlook Connector (HKLM\...\{3B8AF990-AE63-481C-BC4B-8BB8D7A93B80}) (Version: 2.2.0 - XING)
Zeta Test Management 4.0.24 (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\ZetaTest) (Version: 4.0.24 - Zeta Software GmbH)
Zoom (HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\ZoomUMX) (Version: 4.0 - Zoom Video Communications, Inc.)
Zoom Outlook Plugin (HKLM-x32\...\{173B961D-03FB-46E1-A7DC-4800D9ECE6EF}) (Version: 4.3.4903 - Zoom)
ZScreen 2.10.8.1 (HKLM\...\ZScreen_is1) (Version: 2.10.8.1 - ZScreen)
Zwangs-Update-Killer (HKLM-x32\...\{8E446BC1-620B-47AE-A0B1-ED592A4A758C}_is1) (Version: 1.0.0.0 - pXc-coding.com)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{006D1AAF-AA07-3E1A-AB8A-AECD871BC0F4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0075E4CC-FF29-3AAD-B953-86570555703C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{00A47B32-52E0-3B8A-AA1B-49CE71FAC189}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{00D8A3C6-82A4-310B-B256-4ECE09B042DD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0161E45C-6BAA-3883-993E-4DC69BEDD9AC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0190FB7E-6F8C-3214-8C1B-EE64BB2E8023}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{01EF5153-22FC-392F-9583-6D45F601513B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0262F58C-768C-3769-8470-FC51873B5E4F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0329A39A-F2CD-334B-8A26-EC2FC8EA1702}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{038B9F69-D999-3722-BD29-CC2A0267D5C5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{04AAA43E-AECA-30DE-A4BD-FCE7E0144B95}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{04B429B1-FA85-3AF0-97DF-13425C214722}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{05165E1E-A66D-3A79-A7A0-DB3C3DF75551}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{052E5B07-4FB8-3EC6-A246-86D832EB0E49}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0562C3B8-F2B7-3C55-BCA3-E13773F0206C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{076861B1-19A0-34C3-B4BA-D15E8F06FC61}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{07CD2B38-1235-324B-8A84-DF0156FA7524}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0931DA38-F270-32E3-998F-1185112569F3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0B305526-12EE-330D-B277-70F96CEAD42A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0B8855F5-FCA9-3CA5-A5FE-E47F85D2B647}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0B8A1973-2562-3607-8C07-8271554A5106}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0BD3F65A-4473-30F5-B854-E6698B921B0B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0C4F92F1-23C6-3201-85C3-ADB74E552C4D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0CE8695D-9160-3AAE-ADAE-7387573DDF1A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0DEC2BD4-D35E-3362-B4F7-A5C237FDAF9D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0F6A9318-9A8B-31F7-94EF-40008F18B48E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{0FD2DCFD-99F1-3888-871D-BD37DAB5CE31}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{1010BFBB-BFD5-38DC-AB7D-2366000A18C1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{109A524D-6D39-3025-9780-AE8D47F97A82}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{121AFD11-EF35-3FEC-8A13-9FEFE8F65AEE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{123BBF4D-F5B1-3DE1-8D47-D1A4E05C0D2C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{1241A5A3-0614-3F93-BC8F-C45B35C516B2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{12A25415-7BF1-3518-B616-42096361DB8E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{12A4E4BD-09EF-321F-8D3C-8B85FED552C4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{13BA7E9E-0B32-3386-9430-680A3FB3EA85}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\** **\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{14529A13-9CE0-384F-8848-AAAE4A8FB5A2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{15A96545-611D-3237-8C9C-7F4CC422AA0B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{15C6A4FE-BFBF-39AB-80CF-E8C6D04E4C58}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{15E80B34-1E63-3FC8-92DC-9793D07988BE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{1696C122-61F0-3E57-B39D-9B5E0AD0C405}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{170F41B9-7705-3D13-8BCE-F7C181A52DBA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{18177982-1DDB-3F66-9B14-6AE74AA26AC9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{1AB0C774-5EE5-32E7-B478-6BBE2054B0DD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{1B80E136-3422-3B83-BE24-6123E97BE6CE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{1BE69688-1805-328F-B412-8613ADA07044}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{1D82B7D2-A068-382C-BD40-251A228CA12E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{1F154EA4-89C8-3EF0-8C74-43E385D885B4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{204DA432-4D82-37B2-B421-B51C1D72DC75}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{210EB9BE-2F9D-3ED9-80BB-8671554A96F2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{212D7431-C032-3779-85D2-69089DE83FA6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2231E3A5-3BCC-30B5-B5CB-B0B7853E7DD4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{22DC3CAD-FADA-33ED-8AB5-FF321B86BC9B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{23391E11-170F-346A-ABD8-B51C2DEFCB2F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2375C193-155E-3CAF-9AF3-F02258BE610C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{23F40CF0-89F2-3841-BADB-54B55B80AD17}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{24AF0756-1619-36D9-A0E2-5F4B4CC961C3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{24B9D7CC-92CB-3B50-B174-F29662E243EE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{24DEFB40-EABF-3CCF-B123-6BEB7D59B54A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{256497C9-D03E-3063-976D-BF16AF9CF84C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{25A9D941-85E1-3170-A7CF-AF3EFA407AC7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2684BF1F-0F6F-30F6-BBEF-904FC206F958}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{26FB7056-0096-3C86-AC3F-25217268C587}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{278774A0-8927-3C0B-9223-8D610B0E40F4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{27C73B10-141A-3390-BEF1-842225FBABFA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{27F1534B-6417-35B6-A60B-4CB6A005027D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2897AE80-5834-3CF2-ADC6-8E08E455CF95}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{289E736F-BC3C-3DE0-9B15-B607C9A7F0B4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{28DC58C7-A9DD-3A1D-B8D1-1CD4ECD77B1C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{28F18007-8E57-36B9-A699-7343CAC63FFB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{293CFF1B-9BBB-38B3-8BCC-B44C8CD71178}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2AC28534-6BCD-34E0-A583-A07AFF55EAFA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2B294C03-0247-38A5-8786-795485BCA960}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2BE0780F-42BF-353B-986D-50368A80DE75}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2C0D2A60-45EA-34DE-B734-84E7F8BC0680}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2C4C39AF-8430-3CE7-8019-BD5974A46B04}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2C732390-7ACD-3207-AED4-135753CF6C71}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2C86C4A7-4D17-34DE-ACC0-02FE0576250A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2CABE485-5958-3560-AAE7-36AE2C78B2DB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2D940F57-974B-3667-B8E1-25949AC95B46}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2E2C28EC-2BA1-3D73-95FF-401CB18362FB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{2F20D98E-3C3A-3A89-A4E6-D4F7380137E0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{312BB086-55FE-31D8-9CAE-6B3B54226F46}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{314B9A36-A096-3946-AD93-D9F1BB1B2368}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{335EE53C-3975-3420-BCE3-5E42C6042BD3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{339636BE-741D-3315-A18C-725E06BF2142}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{33D0114F-62A8-38A8-8326-0EAECDEBE521}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3418D2AD-8A18-3943-ACDB-E9D1E0D4B332}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3422E3A2-AE48-3022-96A0-C1219543D7EB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{343D4AD9-B79F-31EB-BB2C-38BF16979EF6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{34F21360-181A-316C-9D9C-4FD97BA2DEE2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3646238C-11CD-3A82-812A-2E513E52460B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{364AB3E1-3E29-3E47-AEBB-83DF1062F89F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{37829631-4BC8-353C-811E-8DF0B4A35916}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{37E8032D-7DFA-30FC-A973-5EC4E6C0A8A1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3821446F-15D4-3743-B954-2B0F8BC2F451}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{38C8BEF8-2FD9-37B7-91CC-136A559B28D6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{39E8C70A-64CC-3047-A13E-1CDC3E086C23}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3A59BAF9-13CD-30A5-96BD-287FD387C459}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3A757931-8B92-36F8-8CE6-618A3EAEB051}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3B61C90B-4C45-3D09-9671-BD1E62112231}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3B979541-1FF1-347A-884B-19B3B6B31B8D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3C2EAB63-2729-3500-A856-038F879F0900}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3CE7F95D-284D-3AF5-A54E-928C310D0048}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3DFB5B8A-1414-3825-B4F3-9AE0378C65C0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3E3AD4BD-346A-460A-80E8-90699B75C00B}\InprocServer32 -> C:\Users\** **\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.194\GatewayActiveX-x64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{3EB56163-D5BE-3703-A291-1589AD4147EE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4029A6B8-F262-362F-9A9C-751756945EF6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{41BF0A62-DBA5-3728-B803-5FC7987F5369}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{41F4B32E-476A-3A04-A3B7-241832DA0763}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{42AF7F50-5509-3158-AF03-7A36D898CB2F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{43BB7338-BA2F-33F0-A352-C3706EBF9182}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{43C519B6-5738-35EB-939B-9C00955F1F98}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{44126A3B-BFAF-3E08-B478-2CF7B2F233BD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{44133ADB-9654-359F-AF5F-CA53BFD17EE0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{446AC3A3-0492-3A33-9D9F-F37345FD1B13}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{45392A93-EE62-36BD-81EA-E73324329B7B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{46087BBE-4146-322F-A514-7FDA224259F4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{462C9658-C6D1-38F3-AAEC-26C37E33D264}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{47440919-DF00-3023-AED9-405260570B34}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{47DBB2EE-EB9A-3C54-A23A-DD23174280A5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{48AD842C-1F07-3E03-A0F0-EA3D33991179}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{491CF3C2-2917-372A-A706-3942DEE4E48B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{495DF916-0D51-31D3-8DD6-9BEE7D637700}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4973CC39-2293-3D1A-B1E8-4E6CAE3A8246}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{49BA0B4D-1B36-3EDA-96A3-35FE93945DDF}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4A56CBBF-057C-3B07-8138-4856AFCCF365}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4AA1620D-FB6A-3E1A-8FAE-77A37A1BDC17}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4B4FAC6F-EF96-356D-BBF1-9EBF3C8A393E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4B6ACA04-F0E0-35CB-A459-81BCA9037709}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4B749BBD-DB4A-35CB-B8CE-F1820DE968D6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4BFBB461-DA69-3BC0-B051-FA2759D97C28}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4C9CC119-5149-3FBF-A147-C7E1F500DAC3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4E49E1BC-5569-3BDC-B052-35CC8D367A16}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4E751CC9-366E-3CD2-A1E9-549844E18B1E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4EDF2642-6D89-3B1B-BC8F-CA87604718C1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4EF7C0CB-66CB-3000-B8AA-3EEC1C85F73D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{4F43589D-BBF4-34D0-A177-DD1FAF5386BF}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{50FC7873-D894-3C0B-B818-0259F0F5B651}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{519C64DF-6FB8-3074-9DE4-DA3C5DE7C4EE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{521D291E-A238-3C3C-AE89-C53231719025}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5287D2F1-99E0-3868-9117-4DBDE520DD1F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{52B259C6-561E-312C-BF78-5DB1C3D59332}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{532BDDA6-B31F-3DEF-9845-D64EA8D9560A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{538655D5-6A8F-3CED-9E25-727251B191A6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{543170E7-30C9-3BD1-9810-7FDD7A231126}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{561DBDB6-3369-3CB1-AEF7-5FEE6A39BDDB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5655D4FA-C55F-3804-85D8-7571C6BBF0BE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{565A9B7D-0B78-37EA-AEF4-156BBAD28FB9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{575B2898-9692-3757-ADA3-AF7E523D143A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{59250F5F-F79A-38F9-8BC0-3C8C852A167A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{593E9857-3EB1-3FFC-BF25-915A70EBC716}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{59D5152B-F94F-3CC1-9A88-F3867ED3353F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{59F4B1D4-52FB-3E48-98B6-2A4B25BCD595}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5A2177A1-EEDB-3E75-8E7C-2AF87878F6FA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5A4630E0-E302-3873-81C8-7FA884B3178B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5AC56265-3F88-35E6-BB62-48A7C9C74BE2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5AC87A5D-032C-3241-8B44-B4E9D72E46EA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5B26FD73-4094-3A70-8EDC-660ACF5DD18F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5E06D04C-9517-3796-AF7E-FC1D83832768}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{5F40B620-7FBD-3FC4-A892-8A988B1F01AC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{606491D9-6301-3BB2-9CD6-A33B2E5C1D1B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{608753B6-6B14-3440-92AD-A948D1234627}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{612484B5-A36F-38DD-B346-94C2780D4DA9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{619ACE56-2A97-3B75-A0B5-F68DB9CF34ED}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{61AA3FD4-40C8-3BF2-9C89-3FA344AA74E9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{635A12BB-4232-3501-827B-754AC6441192}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{648FF2D5-9D64-3C84-8BC6-8E7F178BE67F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6518C1CF-3BA1-3272-80BD-AA0EA6923074}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6596578F-DD23-3FC5-8414-EF8338EF2FB5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{671CC8F2-4CDD-3436-9797-6AEACC8386A0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{67408845-1DF7-35EC-ACCC-10D227E38A9D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{67FDF836-F2EA-3C3B-8D3E-6919A90FE5D8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6870DD0D-F2A8-3BA3-9250-DE3EFFEBE6FB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{699C2767-F605-370D-95E1-597A44E1DBAB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{69AFAED7-3190-3A63-AA55-066417D761F2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6ABC6811-4423-35E7-BCDB-652B423BD640}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6BC65718-2027-3729-8A7F-1D9C0018601F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6C02D68D-127C-3EFD-BF7F-E201A3F1CC85}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6C82A107-2192-3D62-A467-E4F62CE1C784}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6C933EFC-0AFD-3B48-8EC4-65539EB6A642}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6D859DB9-9595-315E-84BD-DDF0B4F53611}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6D9810D7-B045-382D-8BA0-2FF1403978F6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6DA703EB-C5CD-3572-8C09-C9C541F22B16}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6E2562EE-C96B-3669-B0A5-243BC8EED514}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6E3B39BE-FD42-351A-8FED-6BE0A9B20AD2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6E6864DD-A70B-3FD3-950D-0A6B38014A4B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{6FC2F356-3BF0-39B7-9672-2BB35AF49C95}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{703E5A1D-4905-3441-A2F9-050440E9747B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7178D4CF-30ED-3FC8-8FB9-18CADB096A0D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7287947A-1E53-3BFA-9E85-37256E8DF701}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{72993689-BA88-3008-BBFD-DD96B70D9662}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{72DC3E54-E7FF-3ADD-A245-69854D858734}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{735A1DB2-514F-3511-B867-6C2E65A7F347}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{73645A39-F57C-32E7-B17F-F3286E7A5124}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{73F28590-849A-34DE-BFEE-02A24C08E0E3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{73FD3320-E250-3A59-ACED-18A1BBC76C65}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{745D4CA2-5284-340B-A974-E4446A6D664F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{74790F6B-C8EA-3614-8E7C-1F9FD1AFC871}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7544B286-F057-3FF2-901F-35A652892C55}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7547017B-BE01-3CE5-B7BC-D77E25B1E537}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{75754351-09B9-35ED-B086-F613FAC001C0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{759132E7-0F41-320B-8D01-CC92F8880F54}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{75AAB099-ACEA-3F79-9ACC-1F3375C6DB4C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{75B99F26-B77E-3B08-BF73-05BAFE203F53}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{760ECFD9-B92D-3BF1-9063-2C320DEEC18A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{770B948D-5424-393F-B211-00C02C48132B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7769F638-6498-300A-9C82-4CBBC3A7B56D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{77B45FA7-22FC-3676-A4D1-53569A218D21}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{78942E85-4F26-34B5-809F-A0A9E0C57A0F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{794F7DCF-B8D0-3D6C-AF10-3AD5827C1037}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7951053B-FA0D-3AEB-BA8A-029B3EEE244D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{79AC146F-F2A8-3416-A0FA-C0C689F3DF12}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{79F063B8-8338-3704-BF4F-25F949F13CF9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7A1E5B33-25AB-3ADE-8667-FF82E94ADEB7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7A7245D5-E265-3763-BF1F-25DD9A8C3074}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7A9EB9E6-A768-3ABF-A5DD-980FCB95E9A2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7C50ABCF-B0F3-3CA0-9AA6-6504A9E21DE8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7D3C02E4-8ECE-386F-917F-51855CFBFBD1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7DEBC1A1-4342-30DD-8CDD-C789682BF4EC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7E455BD5-1151-30E2-BFC1-8B9C3A91B074}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7E715243-8565-3F67-B98D-7E04C218E590}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7E9C57C0-698D-3BAC-B33D-70EE901F1C98}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7F042A85-0421-3301-80AD-E57200A89420}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7F5B1679-D2F7-3700-9379-9919EE057A16}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{7F7C8834-8B4C-3D46-B326-C3F103F15C49}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{814F9465-3411-3FAF-95AB-E063ABC00BE0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{81772F3D-0897-3796-AA97-223C6B069287}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{81B6073E-11C7-3E4D-89E4-5967FDBFC68B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8256A998-0744-3E8A-ADCA-65DCA090786D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{82CDB7AC-C1CD-3749-BBA9-7A9CB251E454}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{835415EE-8ED8-3485-99D4-29F12C44D5B2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{838BBE95-3E2C-3377-A9F1-8F8BD61A4366}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8458DBD0-A1FE-3E8F-A062-D8A1802A9F40}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{848CBE36-25A1-3793-BE87-7A36022B7D99}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\** **\AppData\Local\Citrix\GoToMeeting\6634\G2MOutlookAddin64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{84F0DD5E-82F6-3AB3-B3BE-7DDE3F266F0E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{85211358-2C55-3CCF-B1D8-8F67F84E4FB9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{85B6FE2A-1A85-355E-8082-B50903C72CE2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8624EAB0-C661-3D28-B232-99D8AD241D97}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8A44DAC9-99A3-3DC5-870A-BBF01074ECFC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8B4CD4A6-125D-3BB5-B4E3-04DB5BF2FC30}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8B690620-A17F-30DC-8712-80194715967F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8D93AF84-E59B-3FC1-8BCB-A07297249CD9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8DA9D28D-1FB4-342A-A80F-173E47D62EE7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8DFFE960-0688-3987-9FAF-D3B901749288}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8ED028A4-21B8-318A-B81F-BE639EA4122A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8EF84E28-480D-3C97-980D-DF480B5BE1EE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{8F8C62DE-78CE-3E1C-B50C-D6033B4F7541}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{904E4878-9289-36F6-83AB-984EF5B173AA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{90A22B58-603C-307E-8CDE-ABB641E0B490}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{90A97E70-19F2-3BC2-B81E-D3756DEB8F49}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{90F461D4-D7FC-442F-802A-C3B94EBA5840}\InprocServer32 -> C:\Users\** **\AppData\Roaming\PremiereGlobal\GlobalMeet Outlook Toolbar\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9128647B-DEBB-32FC-90BD-35EA13946F44}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{917A46B5-3B20-3D34-8845-AE0D82C9EFB1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{91833163-76ED-3449-87B8-80A0E2AA0268}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\** **\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{91D56D0C-0041-3703-AAE8-BF779AFB6766}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{91DF46DE-C11C-31BF-B168-A42516E5EAB2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{92A01FEB-7381-3C59-B938-366952BD31CD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{93559E64-F2C0-382E-8C14-D673F2307210}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9360522D-7A56-3C15-AD29-BBFFC03F4C85}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{942A3B02-96AD-34B1-A5E8-35E74FB34BF7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{943E9DEF-5EA5-3310-B0CA-5AE1F2C06BC7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{94C6B9BF-B1DA-3CDD-9479-6325E6CEC6AA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{94F95AB6-5861-3E5B-831B-4A2D710F7E85}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{953CA056-C13E-363C-B934-E1B33D437207}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9541AEF9-36B5-368D-B354-7F00AFDFC44E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{95D05F80-D118-3630-8A87-45EEE2A41D14}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{96E9A13C-6F45-32AB-8003-C38B0E6FAF21}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{973FBCC8-5357-3343-83A4-F09ACECF600F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{97AF3F94-0454-35EE-A967-6572A196AE4F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{986A2DC6-7A81-35E8-8766-EA6FC5E0558C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{98BF0004-59F3-3DA8-A153-722D4D5364ED}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{98F09EA7-B4B8-3746-8414-BE66574ABF91}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9AC70B8F-7A83-3BA3-8F71-2E51CF1F53C9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9B3C867C-FB44-32A0-9D6F-3A171DE84E5D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9B675F1A-9C1D-3AD3-8464-A180B52BF5A0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9C69B1B6-D509-3898-AD3C-B46A20070E51}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9C776AE8-4BDF-3CD2-A5EA-1EC0657E9743}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9D680839-658B-3106-BF72-033D6F83E6A3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9DA2E4D9-949B-3660-8255-26E05145FA6E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9E110223-9A6B-3D3E-9D15-94FD230C329A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9E1224DE-C10A-35DF-92A1-A38315D6EF1E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9E2AB0AA-34BF-3859-BF91-A0310062D91A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9E7B4C0C-F470-3240-82B3-710E32A32332}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{9F84F183-F3FA-3046-A1C3-EE45E9E54C65}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A05D6A60-AD27-3D83-A0FF-FEDFD7697FA1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A0B7787C-8D3D-3A9D-90D2-1493D15DC729}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A0BEE476-A879-3F36-91D3-75B2A955BD49}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A0D707F3-1533-3082-92F6-A1A0E173525F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A2F423B8-29EA-36E3-93A5-17A065E8DED2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A32BE2B1-50BF-3AF2-8E08-BFB723BFE149}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A4C462F7-5E41-3546-8209-F97A88A1A245}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A4DFA5AF-F6A7-3C6F-96E3-2BC4D494C789}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A58AFCF3-D1C5-332E-8134-A4807C1251D7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A5B519EE-B9D9-3D78-88F0-2201686DCD1D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A6020056-D909-3CC1-8B21-84409AC0422F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A6728DA8-3018-3617-A181-98E945069C55}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A67F48C7-BD1A-332E-BB9E-2AC690323D52}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A724B7B1-DCB3-32DD-80DA-6525A3548D93}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A78D0541-6231-37A0-A0E9-5E9D18B68DE6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A7B5422D-BD4E-360B-BD5E-63845B07C880}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A81A98F6-7C71-303F-A2D7-4309FC05ABFA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A8718C5F-2FD9-3A45-A3AC-53120EEAABE6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A8B1B4E5-B36C-3D47-BE08-766D4D1A6E9D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A8FAA6A5-8A9E-31EA-A5AE-7F543474A1B5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A96512CF-DD42-3A47-9D52-8365FE8F9EBC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{A9954CE5-BD08-383E-9070-F2BB0FA5A909}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{AA425326-64C9-314B-8EBD-A0A06F980D1C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{AA99C875-0288-3149-98D8-E3CEA2D20685}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{ABB7640E-BD85-3EAF-80B6-824FDBF1D4F1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{AC507B42-187F-30A9-976A-830554165695}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{AC8D7E1A-C019-3639-B593-97CCA3F0EF7D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{ADE4FBAA-CC90-363C-BD3E-BAD66E1B0CAD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{AE00732B-8325-3437-85B5-184C044240CB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{AE5A892A-D7B2-32F2-BC7E-60C5698CFD69}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{AF2C3F66-343C-3892-B7B7-527312C54DD7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{AFF8519C-B2C2-3DC8-A319-F56417DC8C49}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B05B723F-4A22-3BA6-AA90-DD31DF8B57E5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B0BD45CE-993A-30CF-96A6-66445B350046}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B0E39723-DA32-371C-B748-4054C8DC6F7E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B1A7B126-F518-3C32-8CDC-EACAA21CDD88}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B26BBCB0-76C7-3C0F-B60E-39C54AA0B5A9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B3AB396D-AFDC-3FDD-9BC9-61BA2C4534F8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B41BBFA7-3B19-3902-B61D-F77E7469B2A3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B4535DFE-BC02-3142-B2B7-D0F3A5561132}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B471734E-BB5E-3004-85A3-1CEBAB172899}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B5DE1941-49E3-3C56-AA96-0B4143D86783}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B634875E-E742-3E88-B41A-8451D87A07A9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B68D0577-B32F-342C-BDE5-D90A676A8516}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B702C9E1-5090-3564-88B7-CB2148F02134}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B8F49650-37FD-33A8-BCF6-E39DCD450B84}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{B94E072B-61A8-35C1-AADF-0B1CB0B4B220}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BA250C0C-9FCC-3885-98FA-71FC91AC6F5B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BA86D665-25D7-3B3C-86E7-B4E09F06F658}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BAC43A0A-933E-30DB-BD15-66F9AF2B6A9E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BAE1D463-5CE3-3182-8E60-532626C0FE3A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BAE29323-B317-3802-9D03-CD602E38D5F0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BCA68942-1381-3845-8727-4421716FBEA9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BDD244D5-4F35-3A9E-81BC-8D2CED80E57C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BE075A17-FE9B-3E74-A3FD-FC0631A9BE66}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BE18D94E-51D9-36CF-BABB-7DD58A79CC8D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BE8C3AAF-2F07-329C-876C-D67840E48B15}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{BF2026E5-A24F-32D2-BF57-7E1029A6E917}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C073B9D6-726D-3641-BBB1-3334BCBA5253}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C232FC05-0482-3A2A-A7CA-88AE5B5E7720}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C2D592F3-3A35-31B7-8BE8-38E3AB267651}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C3BBD0C2-8842-37A5-A964-7CF19F9FF20A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C4836D3E-8527-324A-B66C-5E422099C767}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C491B9CD-EE80-3AD9-B775-639E777CE2C4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C5D8B709-BE78-3F24-B52D-DBAAA8D9F773}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C603973C-3DB3-320F-8DDF-1591877DACE8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C60E333A-8BDB-38FC-88F8-AA4EEEF2580C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C6D08551-0366-3CE9-A5A2-251B727C1667}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C7001969-167C-3AA1-93E5-63EC4AF84328}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C72039AB-5A28-3C79-858F-363708A5483E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C857A9D1-8C9A-3000-96A4-268433786E29}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C85FEF17-BE72-344B-B0AC-1FC915907C77}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C8ABCB49-54E8-3D9C-988B-1A37F7A5D849}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C8CD43A8-9A33-3C8B-A2B9-7B644C3D92AD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C8D01520-6C38-3FF8-9DBB-4B7CC7DE1385}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C9384854-48E6-3382-AFBA-A3A4207BD174}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C9902106-7A08-37BA-A807-98AA66DED20A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{C9FFD920-03EC-3564-AB53-8160B96B6C81}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CA1961E0-D328-3748-AD2D-4A100EFC61EF}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CA1CC5DE-4457-33CF-A65B-6850F3E58B0B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CA84A613-A885-3186-B4C2-8C8A7AA2B1F3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CADC308D-47AB-39F3-A056-D07A8C74D8E0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CADF8037-247C-3FEE-83BA-495E911E040D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CBDAA6C1-E36C-3465-9020-A9F990F86C75}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CD8D7C73-2CFD-3D07-BFFC-E2B91CA6825E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CDD2FE4B-B1E5-39F8-BF08-C959424D3516}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CDE51618-EC7C-32FE-8C08-3AF7BBF865CB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CE8122D5-2F96-3BAD-B7E8-30A652C2BBE6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CF296E9C-936D-3654-A16A-2E9CC247904C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{CF4CE272-ABAA-3202-8C56-BB9476F2DC82}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D09C9DC0-F438-3130-8337-490B03275AE7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D1E46B75-4239-3386-97B1-D423CAD42ED3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D23F2C2D-158E-3801-B7D2-D41B0F129B36}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D28D9847-9407-3D24-803F-4740FBAA7DC3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D29961BC-8B99-3AB7-BD4E-FB0EFE01809A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D631BC89-73BE-3266-90E5-02CADCFF02E1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D64DA0E6-D415-387A-920C-2E9B1DAFEEA6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D64EB073-A6D0-3486-9256-E51C95109B01}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D6A16142-E302-325C-BD3D-F95A66825D41}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D6AFD065-8198-3060-9553-2A7D6AF4BAD2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D85B782D-DA51-3006-ABCD-47CBD8005EF4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D93402F6-F307-3B6E-8F0F-53990D6EF4DA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D96AB14A-24AC-3FE1-91B2-4D544E55CA13}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{D9AF1D6D-E087-333F-A1C8-0141AECEDFD4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DA1A7531-DAFC-3A0F-B5BA-1CEBDEEBCFA1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DA2E725A-1583-3BA5-8F01-C9E668A6A9F7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DA97D073-38B1-3255-AA68-019E176FF3FE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DAC736BB-4CC8-3478-9E8C-95DECBBFB5A1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DAEC612D-9CCC-37ED-AA5D-FFCAF5382650}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DAF1AF08-2437-3260-ABEF-379DA3DD1EC6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DB92FEFE-6A90-343C-BC2D-463025CB7D68}\InprocServer32 ->
         
Fortsetzung folgt ...


Schon mal ganz lieben Dank im Voraus, dass es dieses Forum überhaupt gibt.
Einen schönen Tag noch!

Alt 08.10.2018, 10:16   #2
MattiSchl
 
Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden - Standard

Fortsetzung Teil II



Fortsetzung Addition.txt
Code:
ATTFilter
C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DBE247CA-672D-31DD-9768-DF932A4AF81A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DBEC8F36-76CA-39A8-9557-8812122DD2AA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DCC65B1B-E39F-371A-949F-943ED0597C61}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DD4320F6-506A-3679-B3A6-ACBDC608DBEE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DDF27318-79F0-3EE4-BFF2-E668DE9CC390}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DDF8FD04-6CDD-388D-8FA7-F483BDDB9782}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{DE959CFF-5E71-3B35-88B5-C056A178EAC0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E0765FE6-F1B9-3C04-9A6C-4BB25BAC9960}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E227CFC3-FA7A-32ED-8512-3D00B1ED7FDE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E2AED59C-E397-3AEE-93AD-A3998C616C8B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E33F212B-374B-32FE-B049-C4A466AE025C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E3FD0D2E-DB59-3659-8905-9856B5151F26}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E4583FF0-4917-3563-9A96-4A5AAD303FAB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E4EE89CF-7771-30CE-B826-2EAEEDCD39C8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E61EBAD5-0237-3372-827C-D97CAEEBC9AB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E7E7E122-72C2-34F5-A328-6C93E516FF11}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E87E9987-65AD-3634-9764-B3829057C417}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E88C84EF-9A21-339D-8807-E024B16D2A34}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\** **\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{E96334E3-5842-30B5-AEEB-37AA39DEC5C6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EA0A4F53-061B-3880-A76F-F92251C3CFA8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EA401215-9A64-30F1-8CDD-4802363D1A42}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\** **\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EABE3746-7CA1-3478-923B-8F014E062A41}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EACA9358-51E3-3D0F-A47D-E4FEB630AE91}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EC07A7D1-9DB3-3810-959A-DB894D73AF2F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{ED948E3E-4D72-3C5A-B00D-2E6DC51ACAC5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EE61321B-BA12-35C8-BA28-D830F5659849}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EEC32DBC-7678-3A51-A335-1E4B61DB902B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EEC88F7B-B5D5-3204-BEE3-D4D0FCF25372}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EF702BD3-5979-30F0-B8E0-E047DC28BD57}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{EFBFBCE9-2D5A-31C8-A173-5C47B8A5A286}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F0737084-74C7-3A65-A76B-574E796EB117}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F1C6B4F1-FC37-3FEE-ADB2-0410CA27B9BE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F332DE69-F0B2-312D-BEAE-9B12204B7BCA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F57859F1-3F18-3BDB-8690-3C3602550892}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F58EC86D-416A-3907-A750-5BAF55997ED9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F5E5C671-A2B3-39A4-81E3-315D3507CA57}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F6275176-A180-394A-9591-5CE63613E2F7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F632EBA5-1B10-3976-99DE-B4AC0D604513}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F6788152-2647-33A2-AF3A-FA718FF94260}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F7193185-3B60-370B-878D-9EFA7CD6B682}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F76F30B6-4ABF-32CF-89AA-F2B69F22D5F8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F816DC43-C772-398A-8661-6A954E69CB7E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{F9086B00-2FD0-36DE-A170-FAD1D96E3294}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FA99BB07-D676-4E99-B6E2-A9AA8BC6FFB0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FAAFE17E-BCBC-3475-8D06-71E74B8EED5B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FAD084FD-8DB3-3273-AABA-C2B286170003}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FB981D2E-A2B0-3913-AC3B-BE1249F0D5F5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FC9FEDB7-90E4-32A1-9067-F207946731EF}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FCA4DFD4-1243-3DCB-974C-03971C493916}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FCC20E16-FBA4-3926-B2C1-438D58F3E073}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FCD7A5B6-7CCB-3701-9688-3543F19B484E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FCE5B306-BF2A-3F61-B51C-EAFA8EA344C7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FD90BA71-2DE3-39B1-A81D-0BF822904572}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FDAF6FA4-89F1-3B2A-8D0F-663584A198C2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FE5ED0F1-23B1-3C14-A5A9-2EBA27938317}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FF48DCE0-42AF-31BF-B9C8-7D0BB30BCDBF}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FF6AE98B-B82D-36CF-96D0-060C6C154415}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FF9BD9C3-AB80-3683-861F-6898BD867348}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FFE0ADB4-0C5E-32D6-A127-4DBFF7EF5CC9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-606261689-216238225-4133565063-1001_Classes\CLSID\{FFE615D0-71B7-3F71-B1AF-02AD33F9D41E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\**
**\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [UEAFOverlay] -> {BC6D10E6-AE59-4cef-83DB-FD4C9BC7B7F2} => C:\Program Files\AuthenTec TrueSuite\KeepSafe\fvns.dll [2011-10-21] (Authentec)
ShellIconOverlayIdentifiers: [UEAFOverlayOpen] -> {93BB455E-3D52-4fba-9733-E5103B30FC12} => C:\Program Files\AuthenTec TrueSuite\KeepSafe\fvns.dll [2011-10-21] (Authentec)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_05.dll [2012-06-18] ()
ContextMenuHandlers1-x32-x32: [CopyPathMenuExt32] -> {AD398EA1-77A3-47AF-882F-3B17583A4B47} => C:\Program Files (x86)\MartinStoeckli\CopyPathMenu\CopyPathMenuExt32.dll [2011-08-03] (Martin Stoeckli (www.martinstoeckli.ch))
ContextMenuHandlers1-x32-x32: [CopyPathMenuExt64] -> {AD398EA2-77A3-47AF-882F-3B17583A4B47} => C:\Program Files (x86)\MartinStoeckli\CopyPathMenu\CopyPathMenuExt64.dll [2011-08-03] (Martin Stoeckli (www.martinstoeckli.ch))
ContextMenuHandlers1-x32-x32: [Kaspersky Anti-Virus] -> {dd230880-495a-11d1-b064-008048ec2fc5} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\shellex.dll [2013-12-13] (Kaspersky Lab ZAO)
ContextMenuHandlers1-x32-x32: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Keine Datei
ContextMenuHandlers1-x32-x32-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger)
ContextMenuHandlers1-x32-x32-x32: [PowerArchiver] -> {d03d3e68-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\Program Files (x86)\PowerArchiver\PASHLEXT.DLL [2018-05-16] (ConeXware, Inc.)
ContextMenuHandlers1-x32-x32-x32: [PowerArchiver64] -> {d03d3e78-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\Program Files (x86)\PowerArchiver\PASHLEXT64.DLL [2018-05-16] (ConeXware, Inc.)
ContextMenuHandlers1-x32-x32-x32: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.)
ContextMenuHandlers1-x32-x32-x32: [WDSyncContextMenuHandler] -> {5A51BDCB-F8C2-4698-B79C-A77DF0AA466B} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.)
ContextMenuHandlers2: [Kaspersky Anti-Virus] -> {dd230880-495a-11d1-b064-008048ec2fc5} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\shellex.dll [2013-12-13] (Kaspersky Lab ZAO)
ContextMenuHandlers2: [SafearchiveContextMenu] -> {4E178E79-C9FC-45a1-8B41-2603A37B3F92} => C:\Program Files\AuthenTec TrueSuite\KeepSafe\fvns.dll [2011-10-21] (Authentec)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Keine Datei
ContextMenuHandlers3: [SafearchiveContextMenu] -> {4E178E79-C9FC-45a1-8B41-2603A37B3F92} => C:\Program Files\AuthenTec TrueSuite\KeepSafe\fvns.dll [2011-10-21] (Authentec)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers4-x32-x32: [CopyPathMenuExt32] -> {AD398EA1-77A3-47AF-882F-3B17583A4B47} => C:\Program Files (x86)\MartinStoeckli\CopyPathMenu\CopyPathMenuExt32.dll [2011-08-03] (Martin Stoeckli (www.martinstoeckli.ch))
ContextMenuHandlers4-x32-x32: [CopyPathMenuExt64] -> {AD398EA2-77A3-47AF-882F-3B17583A4B47} => C:\Program Files (x86)\MartinStoeckli\CopyPathMenu\CopyPathMenuExt64.dll [2011-08-03] (Martin Stoeckli (www.martinstoeckli.ch))
ContextMenuHandlers4-x32-x32: [Kaspersky Anti-Virus] -> {dd230880-495a-11d1-b064-008048ec2fc5} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\shellex.dll [2013-12-13] (Kaspersky Lab ZAO)
ContextMenuHandlers4-x32-x32: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Keine Datei
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus] -> {dd230880-495a-11d1-b064-008048ec2fc5} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\shellex.dll [2013-12-13] (Kaspersky Lab ZAO)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [PowerArchiver] -> {d03d3e68-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\Program Files (x86)\PowerArchiver\PASHLEXT.DLL [2018-05-16] (ConeXware, Inc.)
ContextMenuHandlers6: [PowerArchiver64] -> {d03d3e78-0c44-3d45-b15f-bcfd8a8b4c7e} => C:\Program Files (x86)\PowerArchiver\PASHLEXT64.DLL [2018-05-16] (ConeXware, Inc.)
ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.)
ContextMenuHandlers6: [WDSyncContextMenuHandler] -> {5A51BDCB-F8C2-4698-B79C-A77DF0AA466B} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ContextMenuHandlers1_S-1-5-21-606261689-216238225-4133565063-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-606261689-216238225-4133565063-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-606261689-216238225-4133565063-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\** **\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {01DE89FE-FE0B-4DD8-AA9C-45F7FAE3D898} - System32\Tasks\G2MUploadTask-S-1-5-21-606261689-216238225-4133565063-1001 => C:\Users\** **\AppData\Local\GoToMeeting\10750\g2mupload.exe [2018-10-06] (LogMeIn, Inc.)
Task: {049F230F-F90F-41E3-8682-946C4AF68077} - System32\Tasks\{DA0ADB25-4D39-45F8-9FE7-F968672A5C09} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\microTOOL\in-Step\UninstallObjectiFInside.exe" -d "C:\Program Files (x86)\microTOOL\in-Step"
Task: {0BA0FADB-A7E7-4268-9FCA-2433BA8DFB0A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {136033FB-158D-4D89-9EEA-7DA19C60F6FB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001UA => C:\Users\** **\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {19D6C94A-9951-4609-A054-109B592DE517} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [2018-09-23] (Adobe Systems Incorporated)
Task: {2937A824-0E07-487D-BB66-6AEEAA329576} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {34E0B6A0-F7C0-4962-B9E4-C7463118FAE9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-21] (NVIDIA Corporation)
Task: {387D6A25-2D0C-4D41-B90D-1FD020E30689} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-08-20] (Adobe Systems Incorporated)
Task: {3AAD4BAC-9C2B-45BD-BD50-1A86CE7834F0} - System32\Tasks\tcbackup => C:\Users\** **\AppData\Local\tcbackup\mysp.exe
Task: {404E8628-E056-4218-93FF-E81BB0BC3727} - System32\Tasks\{1D5E205D-9FF2-495D-BE74-C79A6D8EDE23} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.3.0.107/de/go/help.faq.installer?source=lightinstaller&LastError=1638
Task: {425C0155-2691-478B-9A7E-F6663FED8795} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation)
Task: {430A29E5-2535-4572-AB29-73E1D2EB22F9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {43ACBA0E-B6CD-40EC-9D71-48E32AC68DA5} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001Core => C:\Users\** **\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {48467F41-DB7D-4DD1-8F19-E292D0F99963} - System32\Tasks\{F4C7DF9D-3A89-4CD6-B858-FC4836F3A6BF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\FreePDF_XP\fpsetup.exe" -d "C:\Program Files (x86)\FreePDF_XP"
Task: {4C9693FD-8849-4E09-BFE8-48D65D196BAE} - System32\Tasks\G2MUpdateTask-S-1-5-21-606261689-216238225-4133565063-1001 => C:\Users\** **\AppData\Local\GoToMeeting\10750\g2mupdate.exe [2018-10-06] (LogMeIn, Inc.)
Task: {52B10783-145B-4524-831C-F90A8DA9F256} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {57515584-C702-44BD-9EF1-B0C8F77A5EEB} - System32\Tasks\{6981D56C-D201-4E3C-8523-A123C1E63F02} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\MICROT~1\in-Step\UNWISE.EXE -c C:\PROGRA~2\MICROT~1\in-Step\INSTALL.LOG
Task: {59B9C871-A329-48B8-83B6-F9B7364E2778} - System32\Tasks\{9EE61E95-C6A9-416A-A703-A7F3056195A5} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.3.0.107&LastError=12007
Task: {5C7C9C39-C9B1-48C9-A293-E3F965E465A7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-21] (NVIDIA Corporation)
Task: {63709D45-B6CA-49F0-9789-88C23D2893F2} - System32\Tasks\{D3B4FB6D-72E1-47F8-B15C-8B899ABF67E8} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.9.0.106/de/abandoninstall?source=lightinstaller&page=tsBing
Task: {643F8B9E-5ECE-4615-9BE3-AD2B7A2CE66B} - System32\Tasks\{03987273-1D97-48EA-AF28-14396681CA05} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.3.0.107/de/go/help.faq.installer?source=lightinstaller&LastError=1638
Task: {645FB514-8DDB-499C-823C-E2BE95934B0C} - System32\Tasks\xingoscupdate => C:\Program Files\XING\XING Outlook Connector\xingoscupdate.exe [2014-01-08] (XING)
Task: {680CFEFA-F9CF-4AA5-9C10-2DAD6496CFAC} - System32\Tasks\Xing Social Recommendations => C:\Program Files\XING\XING Outlook Connector\32-bit\XingSocial.exe [2014-01-08] (XING AG)
Task: {6E148702-16BC-4299-85F0-5B785A0C5626} - System32\Tasks\{3E226EB2-C780-475C-B1C0-EBD68E2832CE} => C:\Windows\system32\pcalua.exe -a "C:\Users\** **\AppData\Local\Temp\02-1656b\Windows\Win 7_2008R2\AutoInst.exe" -d "C:\Users\** **\AppData\Local\Temp\02-1656b\Windows\Win 7_2008R2" <==== ACHTUNG
Task: {7CBE84C5-6D68-4421-A9F4-E380E1B4E56D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd)
Task: {7E253E8D-E8EB-47E9-85F5-A5374D4BCDF8} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001Core => C:\Users\** **\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {98445FA5-96BF-4B2B-9632-63A5B1F99BA4} - System32\Tasks\{C01100D0-DC65-4C85-A492-EB7B55B3D440} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.3.0.107/de/abandoninstall?source=lightinstaller&page=tsInstall
Task: {9B359146-2CB2-44CF-B9A4-C3E37D7104E5} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {9CB4C1D6-B844-49C5-BEFC-13F5FA33CF28} - System32\Tasks\{546DDA70-E914-4247-9FC3-3EA39BB3657D} => C:\Windows\system32\pcalua.exe -a C:\SW-Installs_Neu\INSTEP-PERSONALEDITION-SETUP2.exe
Task: {9CD41467-5FD5-4971-8585-577930A5B09F} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe
Task: {AA3A8290-9A90-407C-90A9-5343C98D4580} - System32\Tasks\{011A56F1-4D52-4205-B3B7-BF303ECDEF8B} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.3.0.107/de/abandoninstall?source=lightinstaller&page=tsBing
Task: {AFC29C50-4C85-4E68-BE73-0465488D16DC} - System32\Tasks\{A180530B-815A-417D-8837-0DC1ED5BF29C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\FreePDF_XP\setup.exe" -d "C:\Program Files (x86)\FreePDF_XP"
Task: {B3D4B459-AEDC-4DB8-A7CC-CECAA406E0A7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation)
Task: {BC6F59C5-3CAC-4AA7-A6FB-A63273ED7385} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-23] (Adobe Systems Incorporated)
Task: {BE58F437-1A27-43F6-AFC4-33F12CA0C7CE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-21] (NVIDIA Corporation)
Task: {DC47F8F9-AFAF-422B-9DA6-A84805437340} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-21] (NVIDIA Corporation)
Task: {E74C65EB-7448-48C5-89A7-54AE40E4ACFF} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001UA => C:\Users\** **\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {E91E5BC0-0326-4851-A01A-C79C12C6544E} - System32\Tasks\{5BDBF235-896D-4D32-BFB4-74B7442D1FA9} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{3E5131E9-1241-4E43-8036-E870C0DEDD97}\setup.exe" -c -runfromtemp -l0x0009
Task: {FD9B005F-8CFC-4E0C-9A33-986401A5427D} - System32\Tasks\{1D04D191-5FC4-4507-B01C-50F57006431E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\FreePDF_XP\fpconfig.exe" -d "C:\Program Files (x86)\FreePDF_XP"

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001Core.job => C:\Users\** **\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001UA.job => C:\Users\** **\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-606261689-216238225-4133565063-1001.job => C:\Users\** **\AppData\Local\GoToMeeting\10750\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-606261689-216238225-4133565063-1001.job => C:\Users\** **\AppData\Local\GoToMeeting\10750\g2mupload.exe

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2012-11-21 23:23 - 2010-06-17 22:56 - 000087040 _____ () C:\Windows\System32\redmonnt.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 06:45 - 2015-10-13 06:45 - 001328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-07-23 12:53 - 2017-06-21 09:02 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000490496 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
2011-05-09 21:46 - 2011-05-09 21:46 - 002760192 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtCore4.dll
2011-05-09 21:56 - 2011-05-09 21:56 - 009856000 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtGui4.dll
2011-05-09 21:47 - 2011-05-09 21:47 - 000416256 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtXml4.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000217600 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFCommon.dll
2011-05-10 13:32 - 2011-05-10 13:32 - 000731648 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\qwt5.dll
2011-05-09 21:48 - 2011-05-09 21:48 - 000990720 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtNetwork4.dll
2018-10-08 09:48 - 2018-09-12 17:57 - 002785784 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-10-08 09:48 - 2018-09-12 11:35 - 002701064 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-04-26 16:38 - 2016-12-29 15:16 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-11-03 04:09 - 2011-11-03 04:09 - 000087880 _____ () C:\Program Files\AuthenTec TrueSuite\ssutil.dll
2011-11-03 04:08 - 2011-11-03 04:08 - 000556360 _____ () C:\Program Files\AuthenTec TrueSuite\DataManager.dll
2012-11-14 16:34 - 2010-11-12 13:38 - 000241152 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2014-04-14 20:42 - 2013-05-28 18:56 - 000151552 ____R () C:\Windows\system\3DG4me.exe
2018-10-08 09:20 - 2018-10-08 09:20 - 001962552 _____ () C:\Users\** **\AppData\Local\slack\app-3.3.3\ffmpeg.dll
2018-10-08 09:20 - 2018-10-08 09:20 - 000149048 _____ () \\?\C:\Users\** **\AppData\Local\slack\app-3.3.3\resources\app.asar.unpacked\node_modules\runas\build\Release\runas.node
2018-10-08 09:20 - 2018-10-08 09:20 - 000116792 _____ () \\?\C:\Users\** **\AppData\Local\slack\app-3.3.3\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2013-03-19 09:53 - 2014-08-19 21:12 - 001356568 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
2017-04-26 16:20 - 2016-10-14 20:58 - 001658320 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2012-11-18 22:57 - 2004-11-20 17:50 - 000027136 _____ () C:\Windows\SysWOW64\Icon Text Manager.exe
2009-10-14 14:36 - 2009-10-14 14:36 - 002793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2012-07-23 17:36 - 2012-07-23 17:36 - 000553984 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
2012-07-23 17:36 - 2012-07-23 17:36 - 000404992 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modApplications.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000036864 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modFeatures.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000025088 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modFraps.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000240128 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modGraph.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000062464 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modlcd.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000291328 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modNetwork.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000184832 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modNpu.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000211456 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modOptions.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000064000 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modOverview.dll
2012-07-23 17:36 - 2012-07-23 17:36 - 000317440 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modSystemInfo.dll
2018-09-09 10:32 - 2018-09-05 22:14 - 001055520 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\SDL2.dll
2018-09-09 10:32 - 2018-08-27 22:52 - 098006816 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2009-10-14 14:34 - 2009-10-14 14:34 - 000560472 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2018-09-09 10:32 - 2018-08-27 22:52 - 004443424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2018-09-09 10:32 - 2018-08-27 22:52 - 000100128 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2018-10-08 09:20 - 2018-10-08 09:20 - 003695160 _____ () C:\Users\** **\AppData\Local\slack\app-3.3.3\libglesv2.dll
2018-10-08 09:20 - 2018-10-08 09:20 - 000025144 _____ () C:\Users\** **\AppData\Local\slack\app-3.3.3\libegl.dll
2018-10-08 09:20 - 2018-10-08 09:20 - 000096312 _____ () \\?\C:\Users\** **\AppData\Local\slack\app-3.3.3\resources\app.asar.unpacked\node_modules\@paulcbetts\system-idle-time\build\Release\system_idle_time.node
2012-10-16 11:39 - 2012-10-16 11:39 - 000646744 _____ () C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
2018-09-20 07:52 - 2018-09-15 10:26 - 005110616 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll
2018-09-20 07:52 - 2018-09-15 10:26 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll
2018-10-08 09:20 - 2018-10-08 09:20 - 000431160 _____ () \\?\C:\Users\** **\AppData\Local\slack\app-3.3.3\resources\app.asar.unpacked\node_modules\@slack\slack-calls\build\Release\slack-calls.node
2018-10-08 09:20 - 2018-10-08 09:20 - 000164408 _____ () \\?\C:\Users\** **\AppData\Local\slack\app-3.3.3\resources\app.asar.unpacked\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node
2018-10-08 09:20 - 2018-10-08 09:20 - 000490040 _____ () \\?\C:\Users\** **\AppData\Local\slack\app-3.3.3\resources\app.asar.unpacked\node_modules\@paulcbetts\spellchecker\build\Release\spellchecker.node
2012-08-17 22:39 - 2012-12-15 16:28 - 001310136 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\kpcengine.2.2.dll
2017-07-23 12:53 - 2017-06-21 09:02 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2014-04-14 20:42 - 2012-06-06 11:56 - 000143360 ____R () C:\Windows\system\3DG4me.dll
2017-06-29 12:20 - 2018-09-05 22:14 - 000876320 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-06-29 12:20 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-06-29 12:20 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-06-29 12:20 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-06-29 12:20 - 2018-09-08 22:31 - 002646304 _____ () C:\Program Files (x86)\Steam\video.dll
2017-12-18 09:10 - 2017-12-20 03:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2017-12-18 09:10 - 2017-12-20 03:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2017-12-18 09:10 - 2017-12-20 03:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2017-12-18 09:10 - 2017-12-20 03:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2017-12-18 09:10 - 2017-12-20 03:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2017-06-29 12:20 - 2018-09-08 22:31 - 001015584 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-06-29 12:20 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2012-11-14 16:33 - 2010-11-01 18:34 - 000159744 ____N () C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\de-DE\THXAudio.resources.dll
2012-11-19 00:19 - 2013-04-22 17:25 - 000445648 _____ () C:\Program Files (x86)\PhraseExpress\pexlang.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 000479160 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll
2018-09-27 08:10 - 2018-09-25 13:52 - 001110856 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll
2018-09-27 08:10 - 2018-09-25 13:52 - 002247496 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\dropbox_crashpad.dll
2018-05-16 10:38 - 2018-09-25 13:57 - 000024264 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\tornado.speedups.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000025456 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000142824 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\_cffi_backend.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 001958760 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000026328 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:52 - 000117272 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\pywintypes35.dll
2018-05-16 10:38 - 2018-09-25 13:52 - 000109024 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32api.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000083784 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\fastpath.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:52 - 000418776 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\pythoncom35.dll
2018-05-16 10:38 - 2018-09-25 13:52 - 000027616 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32event.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000049128 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32process.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000074584 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000131552 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32file.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:54 - 000026312 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000026600 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32clipboard.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000182752 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32gui.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000027616 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32pipe.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000119272 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32security.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:57 - 000401240 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32com.shell.shell.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000028640 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32job.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:57 - 000034664 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:52 - 000023520 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\mmapfile.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000053736 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32service.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000065504 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32evtlog.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:58 - 000059744 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winshell.compiled._winshell.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:57 - 000069336 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:58 - 000028520 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:54 - 000027488 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000032736 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32ts.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:56 - 000156504 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:57 - 000092488 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\sip.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 001779024 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000519504 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:56 - 000052056 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 001929552 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:56 - 003822784 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:56 - 000044888 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:56 - 000132944 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:56 - 000218456 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000205656 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000061408 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32print.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:58 - 000051552 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000027624 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\win32profile.cp35-win32.pyd
2018-08-03 16:22 - 2018-09-25 13:58 - 000033632 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winreindex.compiled._winreindex.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:57 - 000028008 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:57 - 000026336 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:57 - 000025448 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:58 - 000026328 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000031600 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:52 - 000494048 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winxpgui.cp35-win32.pyd
2018-05-16 10:38 - 2018-09-25 13:58 - 000029408 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000029024 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:52 - 000036312 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\librsync.dll
2018-05-16 10:38 - 2018-09-25 13:57 - 000025960 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000434360 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2018-05-16 10:38 - 2018-09-25 13:57 - 000035680 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000025920 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\libEGL.DLL
2018-09-27 08:10 - 2018-09-25 13:55 - 001592128 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2018-05-16 10:38 - 2018-09-25 13:57 - 000029544 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:56 - 000037200 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngine.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:56 - 000531280 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.cp35-win32.pyd
2018-09-27 08:10 - 2018-09-25 13:55 - 000354128 _____ () C:\Users\** **\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.cp35-win32.pyd
2017-07-23 12:53 - 2017-06-21 09:02 - 066837112 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2013-01-05 19:25 - 2009-02-27 17:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2018-09-10 15:18 - 2018-09-10 15:18 - 000172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\2f3ba2036543c66f27c304feea22f3d5\IsdiInterop.ni.dll
2012-11-14 16:34 - 2011-11-29 21:00 - 000059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-11-14 16:31 - 2012-01-20 05:23 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\soka-bau.de -> hxxps://portal.soka-bau.de
IE restricted site: HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\skype.com -> hxxps://apps.skype.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2017-06-23 10:57 - 000000830 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-606261689-216238225-4133565063-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\** **\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: McComponentHostService => 3
MSCONFIG\Services: PowerBiosServer => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Hotkey.lnk => C:\Windows\pss\Hotkey.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: ConnectionCenter => "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
MSCONFIG\startupreg: FreePDF Assistant => "C:\Program Files (x86)\FreePDF_XP\fpassist.exe"
MSCONFIG\startupreg: Google Update => C:\Users\** **\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe
MSCONFIG\startupreg: KeepSafe => "C:\Program Files\AuthenTec TrueSuite\KeepSafe\fvsvr.exe" /startup
MSCONFIG\startupreg: Redirector => "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: ZScreen => C:\Users\** **\Documents\Applications\ZScreen\ZScreen.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{3B701214-A2D3-48E3-B399-F64B193820DD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{563F41C8-BB79-4846-9ABF-CD6FA7272368}] => (Allow) LPort=2869
FirewallRules: [{BD4BF2FE-078D-4657-AE8A-A1BA559FF9DA}] => (Allow) LPort=1900
FirewallRules: [{ABBFB2E2-0EEE-4A50-ACAF-8284C32E3F97}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{53C91E65-7DFF-4EA5-AB2F-9F4E382D0988}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{5150638C-98A8-4C8D-B61A-F5C3A6141D13}] => (Allow) C:\Users\** **\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{B4D08BE3-74F9-47B1-B456-4CD73C4EA700}] => (Allow) C:\Users\** **\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{E7AF3325-DFC2-4D82-A96D-1C5B8C5DFFE8}] => (Allow) C:\Program Files (x86)\PhraseExpress\PhraseExpress.exe
FirewallRules: [TCP Query User{8DF3C2A9-4BEE-4588-9A0F-8C362A172299}C:\users\** **\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\** **\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{A5AC546D-9052-4A19-A945-A25C5E24ABBA}C:\users\** **\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\** **\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{3D9FF0A6-5518-473A-B8A1-C4837756017C}] => (Allow) C:\Program Files (x86)\PhraseExpress\PhraseExpress.exe
FirewallRules: [{C2D76229-08C6-4278-93F3-62CEE927AC9D}] => (Allow) C:\Program Files (x86)\PhraseExpress\PhraseExpress.exe
FirewallRules: [{0F8F21C5-AC16-42FA-AFB1-D4EA997E4EBE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1A46C9A6-E0C7-41D0-91BE-CC5E913474C6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{62DB5491-9CA8-432C-83E0-1A2AABE8929A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C9A9AEAA-8A5F-47F2-B067-24EF7B5955B1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D23CA73B-9AC6-4EFE-93DC-03EE6EC90B3E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F5F84A4D-E064-4E35-8650-0016647A3437}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{A2469CEC-5C4A-4C9A-A97B-654AD52C36E6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2BB37864-3334-4A90-96EC-0E501BDE3CA7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{574F253A-B0A2-4F66-B9FA-0F9A87DA90E0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C60AB2B8-A26F-4384-99FB-08AEBDB3E835}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{CA5002D3-DDB3-4F2C-957E-FB8B76F1C511}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7FEF9DC8-BF34-43CC-B16A-6D2E977B9F6D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{16AF7058-C1CD-4699-AE74-90570484B202}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\BLXX7W2B.536\PJKCHZQ9.WYB\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{D4DC942E-3FB3-4D81-BEFB-A8DBC1188352}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\BLXX7W2B.536\PJKCHZQ9.WYB\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{1D9039FC-18B9-4E43-9F3C-2B6138E1EFAB}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\BLXX7W2B.536\PJKCHZQ9.WYB\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{4B150E4A-816D-4449-A801-EE30E763101E}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\BLXX7W2B.536\PJKCHZQ9.WYB\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{8A3D3ACE-8F66-4517-BFCE-0B80AF3F8792}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8D1B9E91-A28C-4DAF-BD61-85A0C321FD65}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{68339C12-0FA3-446D-82E6-E0425DAF7C96}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{86214C70-A109-4F93-A2B3-7B9C2883DE9F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{13EB14CB-895D-4404-9889-A408B348E37E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1EB2BBB7-6543-4065-81AF-8CAA05693274}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{58EDE258-2051-4BFB-B3BC-045DCD332061}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5CE6C16C-4199-4995-8784-2939A7C12F48}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{54A428CD-40FE-4C3F-AA66-F2DA66548E58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MTB Downhill Simulator\MTB Downhill Simulator.exe
FirewallRules: [{90FDE22B-FBEA-4350-9502-6A2414286453}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MTB Downhill Simulator\MTB Downhill Simulator.exe
FirewallRules: [{20955851-8AD8-4018-BC85-0B2B177B837C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{3520A34C-5EF9-4CB6-9924-0EBD1D72AE18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{0F395FC9-C038-4125-B831-E646951D7E3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{1AABD76F-77E7-4440-A638-679D1EB6231E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B0226076-51FB-4929-961D-406D99624600}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EC06D086-BF3A-42B0-B99A-8646CDB47D15}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\PLV5BGAN.71G\W99GGEXH.D48\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{DA5EDBB0-A0FD-4367-BF52-A36D11EAC5A0}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\PLV5BGAN.71G\W99GGEXH.D48\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{0DBA7F84-FA92-4B7B-8A55-78F9A2966936}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe
FirewallRules: [{A5A3DDCB-32C2-4778-845D-6BB2145C9E11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe
FirewallRules: [{3E15AF7D-F391-4C7B-8FC1-ED7AFFD1210B}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\Q2ZO3BE6.R8Y\A3XM8LLZ.RJG\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{6144833F-C53C-4C90-8E63-62A882EA0851}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\Q2ZO3BE6.R8Y\A3XM8LLZ.RJG\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{7BD616DD-F04E-4695-85B6-FF941AE98CCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{E29CA8CD-E800-40AE-AEC8-9146EBC85F9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{2782FE34-AE53-4B33-A084-9965CBF7E08B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{8103383E-DAC4-4E21-96A1-F12B23899444}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{8599EB39-058E-4D5C-8D84-CE72F529B576}] => (Allow) C:\Users\**\Zoom.exe
FirewallRules: [{05FC958A-17CD-4372-864E-C1C7932515EB}] => (Allow) C:\Users\**\airhost.exe
FirewallRules: [{3B32853E-FAAA-4A54-B4B7-C9C65A6DB0BA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{C22A6FCC-AC8E-46B7-B7D7-D5A763005F62}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{CC1BF863-57C9-47D6-AA53-456BD3E4E709}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{AFD8AE46-DEC1-4F97-867A-669D8E447575}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{35BE5F7D-A298-40AA-ACBB-8629B199EB5A}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\V6X67K86.4H2\BPZY7R5O.1ZR\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{06DD1D09-4B20-4C93-87F2-A02D34B222A7}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\V6X67K86.4H2\BPZY7R5O.1ZR\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{15D399B1-5A4A-4997-BA32-3512FF2ABF75}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{18597475-88F7-4DFC-BC2F-B84C8F0FD396}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\B8G5EPVH.OWD\EPDMN7HD.9O8\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
FirewallRules: [{62E13821-43CC-4651-B17A-1B8ECFD8845A}] => (Allow) C:\Users\** **\AppData\Local\Apps\2.0\B8G5EPVH.OWD\EPDMN7HD.9O8\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\fotobuch.de\Designer 2.0\Designer.exe] => Designer.exe

==================== Wiederherstellungspunkte =========================

25-09-2018 17:50:22 Windows Update
06-10-2018 11:50:20 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/08/2018 10:13:37 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{38428D06-8243-4BEA-B7B3-7EE60B1B408A}\Icon.exe".
Die abhängige Assemblierung "Articulate.Drawing.Internal,processorArchitecture="x86",type="win32",version="2.30.0.4"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".


Systemfehler:
=============

Windows Defender:
===================================
Date: 2016-11-01 12:51:30.633
Description: 
Die Windows Defender-Überprüfung wurde vor Fertigstellung beendet.
Überprüfungs-ID:{38693ECF-4CA0-43C6-8033-96BFD0EE8AD7}
Überprüfungstyp:AntiSpyware
Überprüfungsparameter:Schnellscan
Benutzer:NT-AUTORITÄT\NETZWERKDIENST

Date: 2018-07-14 04:06:23.087
Description: 
Beim Aktualisieren der Signaturen wurde von Windows Defender ein Fehler festgestellt.
Neue Signaturversion:1.271.925.0
Vorherige Signaturversion:1.269.1075.0
Aktualisierungsquelle:Benutzer
Signaturtyp:AntiSpyware
Aktualisierungstyp:Delta
Benutzer:NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:1.1.15000.2
Vorherige Modulversion:1.1.14901.4
Fehlercode:0x80070666
Fehlerbeschreibung:Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen. 

Date: 2018-07-14 04:06:23.087
Description: 
Beim Aktualisieren des Moduls wurde von Windows Defender ein Fehler festgestellt.
Neue Modulversion:1.1.15000.2
Vorherige Modulversion:1.1.14901.4
Aktualisierungsquelle:Benutzer
Benutzer:NT-AUTORITÄT\SYSTEM
Fehlercode:0x80070666
Fehlerbeschreibung:Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen. 

Date: 2016-05-12 03:19:29.786
Description: 
Das %1-Modul wurde aufgrund eines unerwarteten Fehlers beendet.
Fehlertyp:%5
Ausnahmecode:%6
Ressource:%3

CodeIntegrity:
===================================

Date: 2015-11-30 20:52:26.126
Description: 
Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

Date: 2015-11-30 20:52:26.126
Description: 
Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

Date: 2015-11-13 07:17:40.098
Description: 
Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

Date: 2015-11-13 07:17:40.098
Description: 
Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

Date: 2015-11-10 20:13:08.133
Description: 
Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

Date: 2015-11-10 20:13:08.132
Description: 
Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

Date: 2015-11-07 08:54:29.436
Description: 
Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

Date: 2015-11-07 08:54:29.435
Description: 
Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
Prozentuale Nutzung des RAM: 48%
Installierter physikalischer RAM: 16384 MB
Verfügbarer physikalischer RAM: 8375.97 MB
Summe virtueller Speicher: 32766.15 MB
Verfügbarer virtueller Speicher: 23938.46 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:465.85 GB) (Free:181.45 GB) NTFS
Drive d: (Daten) (Fixed) (Total:931.51 GB) (Free:804.91 GB) NTFS
Drive f: () (Removable) (Total:7.39 GB) (Free:5.92 GB) FAT32
Drive g: (WD SmartWare) (CDROM) (Total:0.63 GB) (Free:0 GB) UDF
Drive i: (My Book) (Fixed) (Total:930.86 GB) (Free:61.29 GB) NTFS

\\?\Volume{9fb9fadf-30d1-11e2-abb9-806e6f6e6963}\ (System) (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS
\\?\Volume{9fb9fae1-30d1-11e2-abb9-806e6f6e6963}\ (Recovery) (Fixed) (Total:10.74 GB) (Free:4.09 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 0364464B)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=10.7 GB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0364468F)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Protective MBR) (Size: 7.4 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 3 (MBR Code: Windows XP) (Size: 930.9 GB) (Disk ID: 0002AE3F)
Partition 1: (Not Active) - (Size=930.9 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         
FRST.TXT
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 06.10.2018
durchgeführt von ** ** (Administrator) auf ****10 (08-10-2018 10:14:35)
Gestartet von C:\SW-Installs_Neu
Geladene Profile: ** ** (Verfügbare Profile: ** ** & Atminn & **)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(e-motional.com a division of Esm Software) C:\Windows\SysWOW64\TSLLkSrv.exe
(AuthenTec, Inc) C:\Program Files\AuthenTec TrueSuite\TrueSuiteService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Salfeld Computer) C:\Windows\cc\WinCtlSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Oracle Corporation) C:\oraclexe\app\oracle\product\11.2.0\server\bin\oracle.exe
(Oracle Corporation) C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
(Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(Wacom Technology, Corp.) C:\Windows\System32\Wacom_Tablet.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(AuthenTec Inc.) C:\Program Files\AuthenTec TrueSuite\TouchControl.exe
(AuthenTec Inc.) C:\Program Files\AuthenTec TrueSuite\BioMonitor.exe
(Symantec) C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Bison Inc.) C:\Program Files (x86)\BisonCam\PID_0361\DeLay.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Windows\system\3DG4me.exe
(Authentec) C:\Program Files\AuthenTec TrueSuite\KeepSafe\fvsvr.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(AVM Berlin) C:\Users\** **\AppData\Local\Apps\2.0\BLXX7W2B.536\PJKCHZQ9.WYB\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\fritzbox-usb-fernanschluss.exe
(Domit UK LTD) C:\Users\** **\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Slack Technologies) C:\Users\** **\AppData\Local\slack\app-3.3.3\slack.exe
(ConeXware, Inc.) C:\Program Files (x86)\PowerArchiver\PASTARTER.EXE
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
(Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe
() C:\Windows\SysWOW64\Icon Text Manager.exe
(Bartels Media GmbH) C:\Program Files (x86)\PhraseExpress\phraseexpress.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
(Dropbox, Inc.) C:\Users\** **\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Dropbox, Inc.) C:\Users\** **\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Dropbox, Inc.) C:\Users\** **\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Slack Technologies) C:\Users\** **\AppData\Local\slack\app-3.3.3\slack.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Slack Technologies) C:\Users\** **\AppData\Local\slack\app-3.3.3\slack.exe
(Slack Technologies) C:\Users\** **\AppData\Local\slack\app-3.3.3\slack.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Slack Technologies) C:\Users\** **\AppData\Local\slack\app-3.3.3\slack.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
() C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\Plugins\WD Sync\App\WDSyncService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Slack Technologies) C:\Users\** **\AppData\Local\slack\app-3.3.3\slack.exe
(Slack Technologies) C:\Users\** **\AppData\Local\slack\app-3.3.3\slack.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2328360 2010-09-17] (Synaptics Incorporated)
HKLM\...\Run: [DeLay] => C:\Program Files (x86)\BisonCam\PID_0361\DeLay.exe [53248 2008-12-05] (Bison Inc.)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [] => [X]
HKLM\...\Run: [3DG4me] => C:\Windows\System\3DG4me.exe [151552 2013-05-28] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe [1374720 2010-11-01] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [Norton Ghost 15.0] => C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2598760 2010-03-03] (Symantec Corporation)
HKLM-x32\...\Run: [Icon Text Manager] => C:\Windows\SysWOW64\Icon Text Manager.exe [27136 2004-11-20] ()
HKLM-x32\...\Run: [StartTSL] => C:\Windows\SysWOW64\StartTSL.exe [242088 2010-04-13] (e-motional.com a division of Esm Software)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [AVP] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46368 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [29984 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort12reminder] => "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini"
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2011-04-20] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2629632 2010-12-23] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BambooCore] => C:\Program Files (x86)\Bamboo Dock\BambooCore.exe [646744 2012-10-16] ()
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5571944 2016-04-19] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-15] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig]  <==== ACHTUNG
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [AVMUSBFernanschluss] => C:\Users\** **\AppData\Local\Apps\2.0\BLXX7W2B.536\PJKCHZQ9.WYB\frit..tion_b5355c80db433451_0002.0003_6ff5e44d5e38db65\AVMAutoStart.exe [139264 2016-09-09] (AVM Berlin)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [Zoom] => [X]
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3207968 2018-09-08] (Valve Corporation)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\** **\AppData\Local\slack\Update.exe [1584656 2018-10-08] ()
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [Google Update] => C:\Users\** **\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe [601680 2018-05-19] (Google Inc.)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [MP3 Skype recorder] => C:\Users\** **\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [2824328 2017-12-13] (Domit UK LTD)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [3EB7F8E266BA768F197CA67CB809CFC80BEA46D2._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1469784 2018-09-15] (Google Inc.)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1462184 2018-03-27] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [Dropbox Update] => C:\Users\** **\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\Run: [PowerArchiver Tray] => C:\Program Files (x86)\PowerArchiver\PAStarter.EXE [1827504 2017-11-21] (ConeXware, Inc.)
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {027cc1e3-d9ba-11e2-95dc-0090f5dbf6da} - H:\Startme.exe
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {39253dee-3909-11e4-99d2-02f0253c1001} - F:\Startme.exe
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {448d7108-393d-11e2-8cf5-0090f5dbf6da} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {5a8cb87f-c17a-11e2-92a4-0090f5dbf6da} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {b7bef749-a443-11e8-9c3c-0090f5dbf6da} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {bf61b07a-38c4-11e2-bb31-844bf5728444} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {cc49356c-a4bd-11e6-aed9-02701e4b1001} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {d10022cf-3af7-11e2-b95b-844bf5728444} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {e7ab8e39-7456-11e3-900b-0090f5dbf6da} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\start.exe
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {ec861a6f-370c-11e7-b43d-02d0b5151101} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-606261689-216238225-4133565063-1001\...\MountPoints2: {ff50b8b7-30b8-11e2-bf21-0090f5dbf6da} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-606261689-216238225-4133565063-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\E-MOTI~1.SCR [626688 2008-04-30] (Esm Software)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1462184 2018-03-27] (Garmin Ltd. or its subsidiaries)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acrobat Assistant.lnk [2013-03-26]
ShortcutTarget: Acrobat Assistant.lnk -> C:\Program Files (x86)\Adobe\Acrobat 5.0\Distillr\AcroTray.exe (Adobe Systems Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk [2013-11-11]
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2013-11-11]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PhraseExpress.lnk [2013-06-16]
ShortcutTarget: PhraseExpress.lnk -> C:\Program Files (x86)\PhraseExpress\phraseexpress.exe (Bartels Media GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Qualcomm Atheros Killer Network Manager.lnk [2012-11-28]
ShortcutTarget: Qualcomm Atheros Killer Network Manager.lnk -> C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe ()
Startup: C:\Users\** **\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2018-09-27]
ShortcutTarget: Dropbox.lnk -> C:\Users\** **\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\** **\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk [2017-04-26]
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Beschränkung ? <==== ACHTUNG
GroupPolicyUsers\S-1-5-21-606261689-216238225-4133565063-500\User: Beschränkung <==== ACHTUNG
GroupPolicyUsers\S-1-5-21-606261689-216238225-4133565063-1006\User: Beschränkung <==== ACHTUNG
GroupPolicyUsers\S-1-5-21-606261689-216238225-4133565063-1004\User: Beschränkung <==== ACHTUNG
GroupPolicyUsers\S-1-5-21-606261689-216238225-4133565063-1003\User: Beschränkung <==== ACHTUNG
GroupPolicyUsers\S-1-5-21-606261689-216238225-4133565063-1001\User: Beschränkung <==== ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9 05 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9 06 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9 17 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 C:\Windows\system32\BfLLR.dll [216064 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 C:\Windows\system32\BfLLR.dll [216064 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 C:\Windows\system32\BfLLR.dll [216064 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 C:\Windows\system32\BfLLR.dll [216064 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 05 C:\Windows\system32\BfLLR.dll [216064 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 06 C:\Windows\system32\BfLLR.dll [216064 2012-07-23] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 17 C:\Windows\system32\BfLLR.dll [216064 2012-07-23] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{C534D26B-DD00-44A1-AAE4-F553C924AAFC}: [DhcpNameServer] 192.168.178.1
         
__________________


Alt 08.10.2018, 10:17   #3
MattiSchl
 
Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden - Standard

Fortsetzung Teil IV



FRST.TXT Fortsetzung Teil III (nicht IV, sorry, konnte Überschrift nicht mehr ändern)
Code:
ATTFilter
Internet Explorer:
==================
HKU\S-1-5-21-606261689-216238225-4133565063-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mysn.de
HKU\S-1-5-21-606261689-216238225-4133565063-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://easybox/index.stm
SearchScopes: HKLM -> DefaultScope {64C450FD-6159-45CC-A291-F2CC16C497D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSBTDF&pc=MASB&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {64C450FD-6159-45CC-A291-F2CC16C497D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSBTDF&pc=MASB&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {64C450FD-6159-45CC-A291-F2CC16C497D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSBTDF&pc=MASB&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {64C450FD-6159-45CC-A291-F2CC16C497D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSBTDF&pc=MASB&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-606261689-216238225-4133565063-1001 -> DefaultScope {64C450FD-6159-45CC-A291-F2CC16C497D0} URL = 
SearchScopes: HKU\S-1-5-21-606261689-216238225-4133565063-1001 -> {64C450FD-6159-45CC-A291-F2CC16C497D0} URL = 
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2013-12-13] (Kaspersky Lab ZAO)
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-05-20] (Kaspersky Lab ZAO)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\AuthenTec TrueSuite\IEBHO.dll [2011-11-03] (AuthenTec Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2013-11-11] (LastPass)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll [2013-12-13] (Kaspersky Lab ZAO)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll [2013-12-13] (Kaspersky Lab ZAO)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2013-12-13] (Kaspersky Lab ZAO)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-05-20] (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-04-21] (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\AuthenTec TrueSuite\x86\IEBHO.dll [2011-11-03] (AuthenTec Inc.)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2013-11-11] (LastPass)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll [2013-12-13] (Kaspersky Lab ZAO)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2011-05-13] (Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: DeskbarBHO -> {BFBB7543-916C-449a-9DC6-C9A516A6162F} -> C:\Program Files (x86)\Ixquick Deskbar\deskbar.dll [2005-12-07] (Deskbar)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-21] (Oracle Corporation)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll [2013-12-13] (Kaspersky Lab ZAO)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2013-11-11] (LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2013-11-11] (LastPass)
DPF: HKLM-x32 {414FB93D-DEDD-4FEF-AD7F-167992EBDB52} hxxps://portal.soka-bau.de//SNX/CSHELL/extender.cab
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} 
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Keine Datei
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2013-10-01] (Citrix Systems, Inc.)

FireFox:
========
FF DefaultProfile: 5sdu0fw9.default
FF ProfilePath: C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default [2018-10-08]
FF Homepage: Mozilla\Firefox\Profiles\5sdu0fw9.default -> hxxp://****.de/
FF Extension: (Buffer for Firefox) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\firefox@buffer.xpi [2016-03-07] [Legacy]
FF Extension: (Scrum for Trello) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\jid0-5H6AniOsKhO4eJ4UyLgZRRf0PIU@jetpack.xpi [2017-12-18]
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2017-06-23]
FF Extension: (KinderServer) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\jid0-Jt5LBMVUgcEtparB3gMpE0EbzBk@jetpack.xpi [2016-05-08] [Legacy]
FF Extension: (Pin It Button) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2014-10-07] [Legacy] [ist nicht signiert]
FF Extension: (RescueTime for Firefox) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\rescuetime_firefox@rescuetime.com.xpi [2018-06-27]
FF Extension: (LastPass: Free Password Manager) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\support@lastpass.com.xpi [2018-09-07]
FF Extension: (Ixquick Toolbar) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\{70F241F6-52AB-4D45-993E-C1C09920095B}.xpi [2012-11-17] [Legacy] [ist nicht signiert]
FF Extension: (Password Exporter) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2017-07-04] [Legacy]
FF Extension: (NoRedirect) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\{c1970c0d-dbe6-4d91-804f-c9c0de643a57}.xpi [2016-05-09] [Legacy]
FF Extension: (DownThemAll!) - C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-10-01] [Legacy]
FF SearchPlugin: C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\searchplugins\das-rtliche.xml [2016-03-21]
FF SearchPlugin: C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\searchplugins\ixquick-https---deutsch.xml [2016-03-21]
FF SearchPlugin: C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\searchplugins\leo-eng-deu-v20.xml [2015-08-18]
FF SearchPlugin: C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\searchplugins\metager.xml [2012-11-28]
FF SearchPlugin: C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\5sdu0fw9.default\searchplugins\xing---the-professional-network.xml [2012-12-12]
FF ProfilePath: C:\Users\** **\AppData\Roaming\Mozilla\Firefox\Profiles\0iyi3b8l.default-1493380353608 [2017-04-28]
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Optimization Client\addon => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: (Kaspersky URL Advisor) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2015-02-17] [Legacy] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: (Virtual Keyboard) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2015-02-17] [Legacy] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: (Dangerous Websites Blocker) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2015-02-17] [Legacy] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: (Anti-Banner) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2015-02-17] [Legacy] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: (Safe Money) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2015-02-17] [Legacy] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-12-06] [Legacy] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: (Citavi Picker) - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2017-10-18] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-23] ()
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2013-11-11] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @Musicnotes.com/Musicnotes Viewer -> C:\Program Files\Musicnotes\npmusicn64.dll [2014-11-11] (Musicnotes, Inc.)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-23] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2013-10-01] (Citrix Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-21] (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass.dll [2013-11-11] (LastPass)
FF Plugin-x32: @logitech.com/HarmonyRemote,version=1.0.0 -> C:\Program Files (x86)\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll [2012-09-28] (Logitech Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @Musicnotes.com/Musicnotes Viewer -> C:\Program Files (x86)\Musicnotes\npmusicn.dll [2014-11-11] (Musicnotes, Inc.)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2009-09-25] (Wacom, Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @webex.com/npatgpc -> C:\ProgramData\WebEx\npatgpc.dll [2017-05-22] (Cisco WebEx LLC)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\** **\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: @talk.google.com/O1DPlugin -> C:\Users\** **\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: @tools.google.com/Google Update;version=3 -> C:\Users\** **\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: @tools.google.com/Google Update;version=9 -> C:\Users\** **\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\** **\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-07-03] (Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: pgi.com/ScreenShareHelper -> C:\Users\** **\AppData\Roaming\PGi\ScreenShare Helper\1.1.3\npScreenShareHelperV1.1.3.dll [2013-08-23] (PGi)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\** **\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.194\npGatewayNpapi.dll [2017-05-19] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\** **\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.194\npGatewayNpapi-x64.dll [2017-05-19] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2015-09-29] (Sony Network Entertainment International LLC)
FF Plugin HKU\S-1-5-21-606261689-216238225-4133565063-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Users\** **\AppData\Roaming\mozilla\plugins\npatgpc.dll [2014-03-14] (Cisco WebEx LLC)
FF Plugin ProgramFiles/Appdata: C:\Users\** **\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\** **\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://****.de/
CHR StartupUrls: Default -> "hxxp://****.de/"
CHR NewTab: Default ->  Active:"chrome-extension://laookkfknpbbblfpciffpaejjkokdgca/dashboard.html"
CHR DefaultSearchURL: Default -> hxxps://metager.de/meta/meta.ger3?eingabe={searchTerms}&focus=web&encoding=utf8&lang=all
CHR DefaultSearchKeyword: Default -> metager.de
CHR Profile: C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default [2018-10-08]
CHR Extension: (DuckDuckGo) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2018-10-06]
CHR Extension: (YouTube) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-17]
CHR Extension: (Google-Suche) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-17]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-01-05]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2015-12-06]
CHR Extension: (Website Logon) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\eioaimhbaiomogmbefipmnbpjmefhhoc [2012-11-28]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-01-05]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2018-09-07]
CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2013-01-05]
CHR Extension: (Virtuelle Tastatur) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-08-31]
CHR Extension: (Tomatoes) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\jijbhneeenepenoolcdalnekggeialeo [2018-04-02]
CHR Extension: (Momentum) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\laookkfknpbbblfpciffpaejjkokdgca [2018-10-06]
CHR Extension: (Sanktionsfrei - Fundraising App) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\llchfkjfponagoedeceemiebcohlnldc [2018-08-20]
CHR Extension: (Awesome Screenshot: Screen Video Recorder) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlipoenfbbikpbjkfpfillcgkoblgpmj [2018-06-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Citavi Picker) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2018-02-21]
CHR Extension: (MyHarmony Chrome Plugin) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\omaonpoimgkmbllpdihbnmgphjoipdhf [2013-08-31]
CHR Extension: (Google Mail) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-27]
CHR Extension: (Anti-Banner) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2013-01-05]
CHR Extension: (Chrome Media Router) - C:\Users\** **\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-21]
CHR Profile: C:\Users\** **\AppData\Local\Google\Chrome\User Data\System Profile [2017-11-27]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2012-10-25]
CHR HKLM-x32\...\Chrome\Extension: [eioaimhbaiomogmbefipmnbpjmefhhoc] - C:\Program Files\AuthenTec TrueSuite\x86\tschrome.crx [2011-09-02]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2012-10-25]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2012-10-25]
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2012-10-25]
CHR HKLM-x32\...\Chrome\Extension: [lpoimibckejjdjcfbdnajaicnklhfplh] - hxxps://chrome.google.com/webstore/detail/lpoimibckejjdjcfbdnajaicnklhfplh
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [omaonpoimgkmbllpdihbnmgphjoipdhf] - C:\Program Files (x86)\Logitech\Harmony Remote Driver\harmony_chrome.crx [2013-05-01]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2012-10-25]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 CC-Updater; C:\Windows\cc\WinCtlSvc.exe [7019624 2018-06-29] (Salfeld Computer) [Datei ist nicht signiert]
R2 FPLService; C:\Program Files\AuthenTec TrueSuite\TrueSuiteService.exe [299848 2011-11-03] (AuthenTec, Inc)
S3 GenericMount Helper Service; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelperx64.exe [2227216 2010-02-12] (Symantec)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-01-20] (Intel Corporation)
S3 LiveUpdate; C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_2.EXE [2999664 2007-09-26] (Symantec Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
R2 Norton Ghost; C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [4590432 2010-03-03] (Symantec Corporation)
S4 OracleJobSchedulerXE; c:\oraclexe\app\oracle\product\11.2.0\server\Bin\extjob.exe [45568 2014-05-29] () [Datei ist nicht signiert]
S3 OracleMTSRecoveryService; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\omtsreco.exe [81408 2014-05-29] (Oracle Corporation) [Datei ist nicht signiert]
R2 OracleServiceXE; c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE [147110912 2014-05-30] (Oracle Corporation) [Datei ist nicht signiert]
S3 OracleXEClrAgent; C:\oraclexe\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe [83968 2014-05-29] (Oracle Corporation) [Datei ist nicht signiert]
R2 OracleXETNSListener; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe [522240 2014-05-29] (Oracle Corporation) [Datei ist nicht signiert]
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
S4 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [35840 2012-06-28] () [Datei ist nicht signiert]
R2 Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [490496 2012-07-23] () [Datei ist nicht signiert]
R3 SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2963960 2010-02-11] (Symantec)
R2 TabletServiceWacom; C:\Windows\system32\Wacom_Tablet.exe [5876008 2010-01-07] (Wacom Technology, Corp.)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7534864 2016-08-25] (TeamViewer GmbH)
R2 TSL PRO Lock Server; C:\Windows\SysWOW64\TSLLkSrv.exe [259472 2010-04-22] (e-motional.com a division of Esm Software)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1049464 2016-04-19] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [314744 2016-04-19] (Western Digital Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [656664 2014-08-19] (Wacom Technology, Corp.)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [669136 2016-10-14] (Wacom Technology, Corp.)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [14848 2012-01-11] (Intel Corporation)
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
S3 Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe /Processid:{46E4B5E8-4B21-4E60-96C2-3DD65D9EE9B5}

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AcpiCtlDrv; C:\Windows\system32\drivers\AcpiCtlDrv.sys [25848 2011-06-28] (Intel Corporation)
R3 Ak27x64; C:\Windows\System32\DRIVERS\Ak27x64.sys [3364720 2012-07-23] (Qualcomm Atheros, Inc.)
R3 avmaura; C:\Windows\System32\DRIVERS\avmaura.sys [116480 2013-01-04] (AVM Berlin)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [66928 2012-07-23] (Qualcomm Atheros, Inc.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152688 2018-09-11] (Malwarebytes)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [422400 2012-04-20] (Huawei Technologies Co., Ltd.) [Datei ist nicht signiert]
R3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [66608 2010-02-12] (Symantec Corporation)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2014-09-17] (Sony Mobile Communications)
S3 huawei_enumerator; C:\Windows\System32\DRIVERS\ew_jubusenum.sys [87040 2012-04-20] (Huawei Technologies Co., Ltd.) [Datei ist nicht signiert]
R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [22776 2011-12-22] (Intel Corporation)
R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26200 2012-03-26] (JMicron Technology Corp.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-12-13] (Kaspersky Lab ZAO)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [91008 2014-05-20] (Kaspersky Lab ZAO) [Datei ist nicht signiert]
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [628320 2014-05-20] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-12-13] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-10-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-10] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-06-18] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [177864 2015-02-17] (Kaspersky Lab ZAO)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [200232 2018-10-08] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [118584 2018-10-08] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [58400 2018-10-08] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [260384 2018-10-08] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [100664 2018-10-08] (Malwarebytes)
R1 netfltcc; C:\Windows\System32\drivers\netfltcc.sys [64680 2018-07-13] (Windows (R) Win 7 DDK provider)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-06-21] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48248 2017-06-21] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57976 2017-06-21] (NVIDIA Corporation)
S3 qcusbnet; C:\Windows\System32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (QUALCOMM Incorporated)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (QUALCOMM Incorporated)
S3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [17920 2013-04-26] (Research in Motion Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [781792 2017-03-31] (Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [419296 2017-03-31] (Realsil Semiconductor Corporation)
S4 secdrv; kein ImagePath
R0 symsnap; C:\Windows\System32\DRIVERS\symsnap.sys [170032 2010-02-11] (StorageCraft)
S3 USBADVAU; C:\Windows\System32\drivers\cm11264.sys [1308160 2009-11-25] (C-Media Electronics Inc)
R3 usbehci; C:\Windows\SysWOW64\drivers\usbehci.sys [26624 2004-06-10] (Microsoft Corporation) [Datei ist nicht signiert]
R3 usbhub; C:\Windows\SysWOW64\drivers\usbhub.sys [57600 2004-06-10] (Microsoft Corporation) [Datei ist nicht signiert]
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
S3 usbuhci; C:\Windows\SysWOW64\drivers\usbuhci.sys [20480 2004-06-10] (Microsoft Corporation) [Datei ist nicht signiert]
S3 VProEventMonitor; C:\Windows\System32\DRIVERS\vproeventmonitor.sys [20528 2009-09-21] (Symantec Corporation)
S3 WacHidRouterPro; C:\Windows\System32\DRIVERS\wachidrouter.sys [126624 2016-10-06] (Wacom Technology)
R3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Western Digital Technologies)
R3 XtuAcpiDriver; C:\Windows\System32\DRIVERS\XtuAcpiDriver.sys [54344 2016-11-22] (Intel Corporation)
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
U2 V2iMount; kein ImagePath
S3 wacommousefilter; system32\DRIVERS\wacommousefilter.sys [X]
S3 wacomvhid; system32\DRIVERS\wacomvhid.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-10-08 10:14 - 2018-10-08 10:14 - 000000000 ____D C:\FRST
2018-10-08 10:11 - 2018-10-08 10:11 - 000058400 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-10-08 10:10 - 2018-10-08 10:10 - 000118584 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-10-08 10:10 - 2018-10-08 10:10 - 000100664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-10-08 10:03 - 2018-10-08 10:03 - 000000000 _____ C:\Users\** **\defogger_reenable
2018-10-08 09:52 - 2018-10-08 09:52 - 000000000 ____D C:\Users\** **\AppData\Local\mbam
2018-10-08 09:48 - 2018-10-08 10:10 - 000260384 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-10-08 09:48 - 2018-10-08 09:48 - 000200232 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-10-08 09:48 - 2018-10-08 09:48 - 000001874 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-10-08 09:48 - 2018-10-08 09:48 - 000000000 ____D C:\Users\** **\AppData\Local\mbamtray
2018-10-08 09:48 - 2018-10-08 09:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-10-08 09:48 - 2018-10-08 09:48 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-10-08 09:48 - 2018-10-08 09:48 - 000000000 ____D C:\Program Files\Malwarebytes
2018-10-08 09:48 - 2018-09-11 13:18 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-10-07 19:27 - 2018-10-07 19:27 - 000000000 ____D C:\KVRT_Data
2018-10-07 19:11 - 2018-10-07 19:13 - 147757864 _____ (AO Kaspersky Lab) C:\Users\** **\Desktop\KVRT.exe
2018-10-06 15:09 - 2018-10-07 20:10 - 000802304 _____ C:\Users\** **\Desktop\Cross-Referenzliste_CTFL-CAST 2.0_v6.xls
2018-10-06 15:09 - 2018-10-06 15:09 - 018289173 _____ C:\Users\** **\Desktop\Unterlagen_für_Akkreditierung_Sept2018.zip
2018-10-06 15:07 - 2018-10-06 15:07 - 000784384 _____ C:\Users\** **\Desktop\Cross-Referenzliste_CTFL-CAST 2.0_v5_170707.xls
2018-10-06 15:07 - 2018-10-06 15:07 - 000113664 _____ C:\Users\** **\Desktop\180713_Diverser Schriftverkehr.msg
2018-10-06 14:03 - 2018-10-06 14:03 - 001691105 _____ C:\Users\** **\AMG_Jungs.pdf
2018-09-27 08:10 - 2018-09-27 08:10 - 000000000 ____D C:\Users\** **\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-09-26 16:47 - 2018-09-26 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CSoft
2018-09-26 16:45 - 2018-09-26 16:45 - 000000000 ____D C:\CSOFT
2018-09-25 17:50 - 2018-08-31 17:08 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2018-09-25 17:50 - 2018-08-31 17:08 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2018-09-25 17:50 - 2018-08-30 03:47 - 001230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2018-09-25 17:50 - 2018-08-30 03:10 - 001424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2018-09-25 17:50 - 2018-08-28 07:50 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2018-09-25 17:50 - 2018-08-24 21:47 - 000398424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-09-25 17:50 - 2018-08-24 20:47 - 000350296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-09-25 17:50 - 2018-08-24 01:05 - 025736704 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-09-25 17:50 - 2018-08-24 00:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-09-25 17:50 - 2018-08-24 00:56 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-09-25 17:50 - 2018-08-24 00:45 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-09-25 17:50 - 2018-08-24 00:44 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-09-25 17:50 - 2018-08-24 00:43 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-09-25 17:50 - 2018-08-24 00:43 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-09-25 17:50 - 2018-08-24 00:43 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-09-25 17:50 - 2018-08-24 00:43 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-09-25 17:50 - 2018-08-24 00:37 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-09-25 17:50 - 2018-08-24 00:36 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-09-25 17:50 - 2018-08-24 00:34 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-09-25 17:50 - 2018-08-24 00:34 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-09-25 17:50 - 2018-08-24 00:33 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-09-25 17:50 - 2018-08-24 00:33 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-09-25 17:50 - 2018-08-24 00:33 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-09-25 17:50 - 2018-08-24 00:33 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-09-25 17:50 - 2018-08-24 00:27 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-09-25 17:50 - 2018-08-24 00:24 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-09-25 17:50 - 2018-08-24 00:19 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-09-25 17:50 - 2018-08-24 00:18 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-09-25 17:50 - 2018-08-24 00:17 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-09-25 17:50 - 2018-08-24 00:15 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-09-25 17:50 - 2018-08-24 00:15 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-09-25 17:50 - 2018-08-24 00:13 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-09-25 17:50 - 2018-08-24 00:12 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-09-25 17:50 - 2018-08-24 00:03 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-09-25 17:50 - 2018-08-24 00:01 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-09-25 17:50 - 2018-08-24 00:01 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-09-25 17:50 - 2018-08-24 00:00 - 015283712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-09-25 17:50 - 2018-08-23 23:59 - 002136064 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-09-25 17:50 - 2018-08-23 23:59 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-09-25 17:50 - 2018-08-23 23:52 - 004510720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-09-25 17:50 - 2018-08-23 23:40 - 001555456 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-09-25 17:50 - 2018-08-23 23:28 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-09-25 17:50 - 2018-08-23 23:27 - 020279296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-09-25 17:50 - 2018-08-23 23:25 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-09-25 17:50 - 2018-08-23 23:15 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-09-25 17:50 - 2018-08-23 23:14 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-09-25 17:50 - 2018-08-23 23:14 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-09-25 17:50 - 2018-08-23 23:14 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-09-25 17:50 - 2018-08-23 23:13 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-09-25 17:50 - 2018-08-23 23:12 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-09-25 17:50 - 2018-08-23 23:09 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-09-25 17:50 - 2018-08-23 23:09 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-09-25 17:50 - 2018-08-23 23:07 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-09-25 17:50 - 2018-08-23 23:06 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-09-25 17:50 - 2018-08-23 23:06 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-09-25 17:50 - 2018-08-23 23:06 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-09-25 17:50 - 2018-08-23 23:00 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-09-25 17:50 - 2018-08-23 22:56 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-09-25 17:50 - 2018-08-23 22:56 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-09-25 17:50 - 2018-08-23 22:55 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-09-25 17:50 - 2018-08-23 22:54 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-09-25 17:50 - 2018-08-23 22:53 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-09-25 17:50 - 2018-08-23 22:52 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-09-25 17:50 - 2018-08-23 22:51 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-09-25 17:50 - 2018-08-23 22:51 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-09-25 17:50 - 2018-08-23 22:48 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-09-25 17:50 - 2018-08-23 22:46 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-09-25 17:50 - 2018-08-23 22:44 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-09-25 17:50 - 2018-08-23 22:44 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-09-25 17:50 - 2018-08-23 22:44 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-09-25 17:50 - 2018-08-23 22:30 - 004037632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-09-25 17:50 - 2018-08-23 22:27 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-09-25 17:50 - 2018-08-23 22:24 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-09-25 17:50 - 2018-08-13 17:54 - 014183936 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-09-25 17:50 - 2018-08-13 17:54 - 002004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-09-25 17:50 - 2018-08-13 17:54 - 001888768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-09-25 17:50 - 2018-08-13 17:54 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2018-09-25 17:50 - 2018-08-13 17:54 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2018-09-25 17:50 - 2018-08-13 17:54 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2018-09-25 17:50 - 2018-08-13 17:54 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2018-09-25 17:50 - 2018-08-13 17:53 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2018-09-25 17:50 - 2018-08-13 17:53 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2018-09-25 17:50 - 2018-08-13 17:41 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2018-09-25 17:50 - 2018-08-13 17:40 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-09-25 17:50 - 2018-08-13 17:40 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2018-09-25 17:50 - 2018-08-13 17:40 - 001390080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-09-25 17:50 - 2018-08-13 17:40 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-09-25 17:50 - 2018-08-13 17:40 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2018-09-25 17:50 - 2018-08-13 17:40 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2018-09-25 17:50 - 2018-08-13 17:40 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2018-09-25 17:50 - 2018-08-13 17:40 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2018-09-25 17:50 - 2018-08-12 22:32 - 000378464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2018-09-25 17:50 - 2018-08-12 22:31 - 001894496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-09-25 17:50 - 2018-08-12 22:31 - 000289376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2018-09-25 17:50 - 2018-08-12 22:28 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2018-09-25 17:50 - 2018-08-12 22:14 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2018-09-25 17:50 - 2018-08-10 17:59 - 005552816 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-09-25 17:50 - 2018-08-10 17:59 - 000154800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-09-25 17:50 - 2018-08-10 17:58 - 000385120 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-09-25 17:50 - 2018-08-10 17:58 - 000263776 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-09-25 17:50 - 2018-08-10 17:58 - 000096864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-09-25 17:50 - 2018-08-10 17:57 - 000708272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-09-25 17:50 - 2018-08-10 17:57 - 000631624 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-09-25 17:50 - 2018-08-10 17:56 - 001664296 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2018-09-25 17:50 - 2018-08-10 17:55 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-09-25 17:50 - 2018-08-10 17:54 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:53 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:45 - 004054192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-09-25 17:50 - 2018-08-10 17:45 - 000309424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-09-25 17:50 - 2018-08-10 17:44 - 003961440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-09-25 17:50 - 2018-08-10 17:42 - 001315512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-09-25 17:50 - 2018-08-10 17:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000463360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:39 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-09-25 17:50 - 2018-08-10 17:39 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-09-25 17:50 - 2018-08-10 17:27 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2018-09-25 17:50 - 2018-08-10 17:22 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-09-25 17:50 - 2018-08-10 17:22 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-09-25 17:50 - 2018-08-10 17:22 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-09-25 17:50 - 2018-08-10 17:21 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-09-25 17:50 - 2018-08-10 17:20 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2018-09-25 17:50 - 2018-08-10 17:17 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-09-25 17:50 - 2018-08-10 17:17 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-09-25 17:50 - 2018-08-10 17:17 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-09-25 17:50 - 2018-08-10 17:15 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-09-25 17:50 - 2018-08-10 17:13 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-09-25 17:50 - 2018-08-10 17:13 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-09-25 17:50 - 2018-08-10 17:13 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-09-25 17:50 - 2018-08-10 17:13 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-09-25 17:50 - 2018-08-10 17:12 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-09-25 17:50 - 2018-08-10 17:12 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2018-09-25 17:50 - 2018-08-10 17:12 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2018-09-25 17:50 - 2018-08-10 17:12 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2018-09-25 17:50 - 2018-08-10 17:12 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2018-09-25 17:50 - 2018-08-10 17:12 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-09-25 17:50 - 2018-08-10 17:10 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-09-25 17:50 - 2018-08-10 17:10 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-09-25 17:50 - 2018-08-10 17:10 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-09-25 17:50 - 2018-08-10 17:10 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-09-25 17:50 - 2018-08-10 17:09 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-09-25 17:50 - 2018-08-10 17:09 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:09 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:09 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-09-25 17:50 - 2018-08-10 17:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-09-25 17:50 - 2018-07-29 17:55 - 001110528 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-09-25 17:50 - 2018-07-18 17:18 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2018-09-25 17:50 - 2018-06-27 15:20 - 000419648 _____ C:\Windows\SysWOW64\locale.nls
2018-09-25 17:50 - 2018-06-27 15:19 - 000419648 _____ C:\Windows\system32\locale.nls
2018-09-20 09:16 - 2018-09-20 09:16 - 000000883 _____ C:\Users\** **\AppData\Local\recently-used.xbel
2018-09-10 13:42 - 2018-08-03 17:55 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2018-09-10 13:42 - 2018-08-03 17:39 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2018-09-10 13:42 - 2018-07-07 17:24 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-09-10 13:42 - 2018-07-06 18:09 - 000947904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-09-10 13:42 - 2018-06-29 17:55 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2018-09-10 13:42 - 2018-06-29 17:55 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2018-09-10 13:42 - 2018-06-29 17:40 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll
2018-09-10 13:42 - 2018-06-29 17:09 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll
2018-09-10 13:42 - 2018-06-27 18:01 - 000114368 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2018-09-10 13:42 - 2018-06-27 17:55 - 003246592 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2018-09-10 13:42 - 2018-06-27 17:55 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2018-09-10 13:42 - 2018-06-27 17:55 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2018-09-10 13:42 - 2018-06-27 17:55 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2018-09-10 13:42 - 2018-06-27 17:54 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2018-09-10 13:42 - 2018-06-27 17:54 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2018-09-10 13:42 - 2018-06-27 17:43 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2018-09-10 13:42 - 2018-06-27 17:42 - 002366464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2018-09-10 13:42 - 2018-06-27 17:42 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2018-09-10 13:42 - 2018-06-27 17:42 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2018-09-10 13:42 - 2018-06-27 17:41 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2018-09-10 13:42 - 2018-06-27 17:21 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2018-09-10 13:42 - 2018-06-27 17:16 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2018-09-10 13:42 - 2018-06-21 05:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-09-10 13:42 - 2018-06-21 05:09 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-09-10 13:42 - 2018-06-16 07:24 - 000459632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-09-10 13:42 - 2018-06-16 07:11 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-09-10 13:42 - 2018-06-16 07:11 - 000467856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-09-10 13:42 - 2018-06-08 18:21 - 000369664 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2018-09-10 13:42 - 2018-06-08 18:20 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-09-10 13:42 - 2018-06-08 18:20 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-09-10 13:42 - 2018-06-08 18:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-09-10 13:42 - 2018-06-08 18:19 - 000357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2018-09-10 13:42 - 2018-06-08 18:19 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2018-09-10 13:42 - 2018-06-08 18:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-09-10 13:42 - 2018-06-08 17:55 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-09-10 13:42 - 2018-06-08 17:55 - 000330240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2018-09-10 13:42 - 2018-06-08 17:55 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-09-10 13:42 - 2018-06-08 17:54 - 000269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2018-09-10 13:42 - 2018-06-08 17:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2018-09-10 13:42 - 2018-06-08 17:29 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-09-10 13:42 - 2018-06-08 17:28 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2018-09-10 13:42 - 2018-05-15 06:16 - 001681088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-09-10 13:42 - 2018-05-15 05:44 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2018-09-10 13:42 - 2018-05-15 05:44 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2018-09-10 13:42 - 2018-05-15 05:44 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-09-10 13:42 - 2018-05-15 05:44 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2018-09-10 13:42 - 2018-05-15 05:24 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2018-09-10 13:42 - 2018-05-15 05:23 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2018-09-10 13:42 - 2018-05-15 05:13 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2018-09-10 13:42 - 2018-05-15 05:13 - 000782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2018-09-10 13:42 - 2018-05-15 05:13 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-09-10 13:42 - 2018-05-15 05:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2018-09-10 13:42 - 2018-05-15 05:01 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2018-09-10 13:42 - 2018-05-15 05:01 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2018-09-10 13:42 - 2018-05-12 04:07 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2018-09-10 13:42 - 2018-05-12 04:07 - 000033152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2018-09-10 13:42 - 2018-05-12 04:07 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2018-09-10 13:42 - 2018-05-11 23:19 - 000977408 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-09-10 13:42 - 2018-05-11 23:19 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-09-10 13:42 - 2018-05-11 02:40 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-09-10 13:42 - 2018-05-11 02:40 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-09-10 13:42 - 2018-05-02 17:32 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2018-09-10 13:42 - 2018-05-02 17:32 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2018-09-10 13:42 - 2018-05-02 17:32 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2018-09-10 13:42 - 2018-05-02 17:32 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2018-09-10 13:42 - 2018-05-02 17:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2018-09-10 13:42 - 2018-05-02 17:32 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2018-09-10 13:42 - 2018-05-02 17:32 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2018-09-10 13:42 - 2018-04-26 15:05 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000918296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000065880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000063832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000021848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000020824 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000019288 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000018776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000017240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000017240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000016216 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000015704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000015704 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000015192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000013152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2018-09-10 13:42 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2018-09-10 13:42 - 2018-04-25 18:02 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2018-09-10 13:42 - 2018-04-25 17:18 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2018-09-10 13:42 - 2018-04-23 02:00 - 000876032 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2018-09-10 13:42 - 2018-04-23 01:40 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2018-09-10 13:42 - 2018-04-18 18:03 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2018-09-10 13:42 - 2018-04-18 18:03 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2018-09-10 13:42 - 2018-04-18 17:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2018-09-10 13:42 - 2018-04-18 17:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2018-09-10 13:42 - 2018-04-18 17:41 - 000016896 _____ (Microsoft Corporation) C:\Windows\hh.exe
2018-09-10 13:42 - 2018-04-18 17:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2018-09-10 13:42 - 2018-04-11 18:38 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-09-10 13:42 - 2018-04-11 18:38 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-09-10 13:42 - 2018-04-11 18:36 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-09-10 13:42 - 2018-04-11 18:36 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-09-10 13:42 - 2018-04-10 18:36 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2018-09-10 13:42 - 2018-04-10 18:36 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2018-09-10 13:42 - 2018-04-10 18:35 - 001735168 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-09-10 13:42 - 2018-04-10 18:34 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-09-10 13:42 - 2018-04-10 18:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-09-10 13:42 - 2018-04-10 18:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-09-10 13:42 - 2018-04-10 18:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2018-09-10 13:42 - 2018-04-10 17:48 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-09-10 13:42 - 2018-04-10 17:47 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-09-10 13:42 - 2018-04-10 17:47 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-09-10 13:42 - 2018-04-07 18:41 - 000371392 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-09-10 13:42 - 2018-03-14 19:16 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2018-09-10 13:42 - 2018-03-14 19:12 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2018-09-10 13:42 - 2018-03-14 19:12 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2018-09-10 13:42 - 2018-03-14 19:12 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-09-10 13:42 - 2018-03-14 19:07 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2018-09-10 13:42 - 2018-03-14 18:57 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-09-10 13:42 - 2018-03-14 18:57 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-09-10 13:42 - 2018-03-14 18:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2018-09-10 13:42 - 2018-03-14 18:57 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2018-09-10 13:42 - 2018-03-14 18:53 - 002651648 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-09-10 13:42 - 2018-03-14 18:53 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-09-10 13:42 - 2018-03-14 18:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-09-10 13:42 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-09-10 13:42 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2018-09-10 13:42 - 2018-03-14 18:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-09-10 13:42 - 2018-03-14 18:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2018-09-10 13:42 - 2018-03-06 20:13 - 000148160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2018-09-10 13:42 - 2018-03-06 20:11 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2018-09-10 13:42 - 2018-03-06 20:11 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll
2018-09-10 13:42 - 2018-03-06 20:10 - 000170176 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2018-09-10 13:42 - 2018-03-06 20:07 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2018-09-10 13:42 - 2018-03-06 20:07 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2018-09-10 13:42 - 2018-02-22 05:28 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2018-09-10 13:42 - 2018-02-22 05:06 - 000134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2018-09-10 13:42 - 2018-02-10 20:35 - 000367296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000334528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000185024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000122560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS
2018-09-10 13:42 - 2018-02-10 20:35 - 000068288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000064192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS
2018-09-10 13:42 - 2018-02-10 20:35 - 000063168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000060608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000036032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000031936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000023744 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll
2018-09-10 13:42 - 2018-02-10 20:35 - 000020160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000015040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys
2018-09-10 13:42 - 2018-02-10 20:35 - 000012096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2018-09-10 13:42 - 2018-02-10 20:23 - 002292224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2018-09-10 13:42 - 2018-02-10 20:23 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\racpldlg.dll
2018-09-10 13:42 - 2018-02-10 20:11 - 003665920 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2018-09-10 13:42 - 2018-02-10 20:11 - 000133120 _____ (Microsoft Corporation) C:\Windows\system32\msrahc.dll
2018-09-10 13:42 - 2018-02-10 20:11 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\racpldlg.dll
2018-09-10 13:42 - 2018-02-10 19:36 - 000108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2018-09-10 13:42 - 2018-02-10 19:36 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdchange.exe
2018-09-10 13:42 - 2018-02-10 19:36 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsraLegacy.tlb
2018-09-10 13:42 - 2018-02-10 19:26 - 000653312 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2018-09-10 13:42 - 2018-02-10 19:26 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\sdchange.exe
2018-09-10 13:42 - 2018-02-10 19:25 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys
2018-09-10 13:42 - 2018-02-10 19:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys
2018-09-10 13:42 - 2018-02-10 19:25 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\MsraLegacy.tlb
2018-09-10 13:42 - 2018-01-12 18:40 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2018-09-10 13:42 - 2018-01-12 18:26 - 000308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2018-09-10 13:38 - 2018-06-13 18:23 - 000140992 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-09-10 13:38 - 2018-06-13 18:18 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-09-10 13:38 - 2018-06-08 15:05 - 002860032 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-09-10 13:38 - 2018-06-08 15:05 - 001602048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-09-10 13:38 - 2018-06-08 15:05 - 000783872 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-09-10 13:38 - 2018-06-08 15:05 - 000612352 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-09-10 13:38 - 2018-06-08 15:05 - 000470016 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-09-10 13:38 - 2018-06-08 15:05 - 000443392 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-09-10 13:38 - 2018-06-08 15:05 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-09-10 13:38 - 2018-06-08 15:05 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-10-08 10:14 - 2012-11-17 21:43 - 000000000 ____D C:\SW-Installs_Neu
2018-10-08 10:13 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-10-08 10:12 - 2015-12-13 13:38 - 000000000 ____D C:\Users\** **\AppData\Roaming\Slack
2018-10-08 10:12 - 2014-04-15 11:12 - 000008192 _____ C:\Windows\SysWOW64\WDPABKP.dat
2018-10-08 10:11 - 2012-12-15 16:21 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2018-10-08 10:11 - 2012-11-14 16:36 - 000000000 ____D C:\ProgramData\NVIDIA
2018-10-08 10:10 - 2017-06-29 12:18 - 000000000 ____D C:\Program Files (x86)\Steam
2018-10-08 10:10 - 2017-06-06 13:04 - 000000000 ____D C:\Windows\SysWOW64\NV
2018-10-08 10:10 - 2017-06-06 13:04 - 000000000 ____D C:\Windows\system32\NV
2018-10-08 10:10 - 2015-01-11 21:56 - 000000000 __SHD C:\Users\** **\IntelGraphicsProfiles
2018-10-08 10:10 - 2012-11-28 11:22 - 000000000 ____D C:\ProgramData\Bigfoot Networks
2018-10-08 10:10 - 2012-11-17 11:27 - 000000000 ____D C:\Users\** **\AppData\LocalLow\AuthenTec
2018-10-08 10:10 - 2012-11-17 11:26 - 000000000 ___HD C:\Users\** **
2018-10-08 10:10 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-10-08 10:08 - 2015-06-17 08:06 - 000001252 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001UA.job
2018-10-08 10:08 - 2012-11-19 00:20 - 000000000 ____D C:\Users\** **\Documents\PhraseExpress
2018-10-08 09:57 - 2012-11-18 01:02 - 000000000 ____D C:\Users\** **\AppData\Local\Lookeen
2018-10-08 09:53 - 2018-07-13 14:54 - 000000000 ____D C:\Users\**
2018-10-08 09:26 - 2014-08-06 14:29 - 000000580 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-606261689-216238225-4133565063-1001.job
2018-10-08 09:23 - 2009-07-14 06:45 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-10-08 09:23 - 2009-07-14 06:45 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-10-08 09:21 - 2017-09-13 20:16 - 000000000 ____D C:\Users\** **\AppData\Local\slack
2018-10-08 09:21 - 2015-12-13 13:38 - 000000000 ____D C:\Users\** **\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2018-10-08 09:20 - 2015-12-13 13:38 - 000000000 ____D C:\Users\** **\AppData\Local\SquirrelTemp
2018-10-07 20:44 - 2015-05-31 21:40 - 000000676 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-606261689-216238225-4133565063-1001.job
2018-10-07 20:14 - 2012-11-17 12:00 - 000000000 ____D C:\Users\** **\Documents\Outlook-Dateien
2018-10-07 20:12 - 2013-01-04 14:35 - 000000000 ___HD C:\Users\** **\AppData\Local\Deployment
2018-10-07 20:01 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2018-10-07 18:12 - 2014-05-26 21:25 - 000003986 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B4BF0DD1-3383-4523-8C17-76B1D92A0331}
2018-10-06 15:32 - 2013-10-22 15:25 - 000000000 ___HD C:\Users\** **\AppData\Local\Articulate
2018-10-06 15:17 - 2016-11-23 21:08 - 000000000 ____D C:\Users\** **\AppData\LocalLow\Mozilla
2018-10-06 12:26 - 2017-07-09 10:30 - 000000000 ____D C:\Users\** **\AppData\Local\GoToMeeting
2018-10-06 12:22 - 2014-05-19 18:37 - 000000000 ____D C:\Users\Atminn
2018-10-06 12:17 - 2015-05-31 21:40 - 000003730 _____ C:\Windows\System32\Tasks\G2MUploadTask-S-1-5-21-606261689-216238225-4133565063-1001
2018-10-06 12:17 - 2014-08-06 14:29 - 000003634 _____ C:\Windows\System32\Tasks\G2MUpdateTask-S-1-5-21-606261689-216238225-4133565063-1001
2018-10-06 11:52 - 2010-11-21 08:50 - 000705296 _____ C:\Windows\system32\perfh007.dat
2018-10-06 11:52 - 2010-11-21 08:50 - 000151648 _____ C:\Windows\system32\perfc007.dat
2018-10-06 11:52 - 2009-07-14 07:13 - 001635588 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-30 11:15 - 2015-05-25 17:29 - 000000000 ____D C:\Users\** **\AppData\Roaming\Spotify
2018-09-30 11:08 - 2015-06-17 08:06 - 000001200 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001Core.job
2018-09-27 15:14 - 2016-09-27 14:34 - 000000000 ____D C:\Users\** **\Documents\Citavi 5
2018-09-27 13:01 - 2013-06-24 21:08 - 000000000 ____D C:\Users\** **\AppData\Roaming\MyPhoneExplorer
2018-09-27 08:10 - 2012-11-18 21:06 - 000000000 ____D C:\Users\** **\AppData\Roaming\Dropbox
2018-09-26 15:28 - 2015-05-25 17:30 - 000000000 ____D C:\Users\** **\AppData\Local\Spotify
2018-09-26 14:27 - 2015-04-23 14:25 - 000000000 ____D C:\Users\** **\AppData\Local\CrashDumps
2018-09-25 18:56 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2018-09-25 18:19 - 2009-07-14 06:45 - 000453632 _____ C:\Windows\system32\FNTCACHE.DAT
2018-09-25 18:02 - 2013-07-22 07:05 - 000000000 ____D C:\Windows\system32\MRT
2018-09-25 17:59 - 2012-11-17 12:37 - 139184408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-09-25 17:57 - 2012-11-14 16:10 - 001609868 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-09-24 22:17 - 2015-02-04 23:48 - 000000000 ____D C:\Users\** **\.gimp-2.8
2018-09-23 14:21 - 2014-08-19 22:14 - 000000000 ____D C:\Users\** **\AppData\Local\Adobe
2018-09-23 13:46 - 2018-05-21 19:38 - 000004544 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-09-23 13:46 - 2013-02-25 10:13 - 000004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-09-23 13:46 - 2012-11-17 11:51 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-09-23 13:46 - 2012-11-17 11:51 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-23 13:46 - 2012-11-17 11:51 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-09-23 13:46 - 2012-11-17 11:51 - 000000000 ____D C:\Windows\system32\Macromed
2018-09-23 13:44 - 2013-01-04 14:35 - 000000000 ___HD C:\Users\** **\AppData\Local\Apps\2.0
2018-09-23 13:25 - 2018-07-13 11:28 - 000000000 ____D C:\Windows\dl
2018-09-23 13:24 - 2016-12-02 12:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-09-23 13:24 - 2012-11-17 11:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-22 11:03 - 2015-06-17 08:06 - 000004236 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001UA
2018-09-22 11:03 - 2015-06-17 08:06 - 000003840 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-606261689-216238225-4133565063-1001Core
2018-09-20 09:16 - 2015-02-04 23:52 - 000000000 ____D C:\Users\** **\AppData\Local\gtk-2.0
2018-09-20 09:14 - 2012-11-17 21:51 - 000000000 ____D C:\Users\** **\AppData\Roaming\WTablet
2018-09-20 07:52 - 2012-11-28 11:36 - 000002223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-10 14:14 - 2015-01-11 21:41 - 000000000 ____D C:\Windows\system32\appraiser
2018-09-10 13:52 - 2009-07-14 04:34 - 000000478 _____ C:\Windows\win.ini

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-11-11 00:12 - 2013-11-11 00:12 - 012767232 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-09-24 17:29 - 2014-09-24 17:29 - 000000093 _____ () C:\Users\** **\AppData\Roaming\ARCompanion.log
2017-09-22 20:58 - 2017-09-22 20:58 - 000037066 _____ () C:\Users\** **\AppData\Roaming\Kommagetrennte Werte (DOS).ADR
2015-08-04 11:28 - 2017-09-22 20:56 - 000037070 _____ () C:\Users\** **\AppData\Roaming\Kommagetrennte Werte (Windows).ADR
2015-06-20 13:08 - 2016-04-01 09:26 - 000038443 _____ () C:\Users\** **\AppData\Roaming\Microsoft Excel 97-2003.ADR
2013-11-11 22:26 - 2015-03-29 22:07 - 000004122 _____ () C:\Users\** **\AppData\Roaming\My Profile.xml
2012-11-28 11:17 - 2012-11-28 11:17 - 000000051 ____H () C:\Users\** **\AppData\Local\killertool.log
2018-09-20 09:16 - 2018-09-20 09:16 - 000000883 _____ () C:\Users\** **\AppData\Local\recently-used.xbel
2013-08-10 10:38 - 2018-07-20 12:35 - 000007668 ____H () C:\Users\** **\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2018-10-06 11:49

==================== Ende von FRST.txt ============================
         
Danke nochmals!
__________________

Alt 08.10.2018, 12:30   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden - Standard

Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden



hi,

man sollte auch mal lernen, zu unterschieden was relevante und eher unwichtige Funde sind. Alle Funde in irgendwelchen Mails sind völlig irrlevant, weil die Mails da einfach nur inaktiv herumlungern.

Wenn aber irgendwo anders im Dateisystem Funde sind, sollte man die sich genauer ansehen. Solange nur Mails vom AV angekreidet werden ist alles okay, löschen und gut ist. Da muss man kein Sicherheitsproblem draus konstruieren.

BTW: Kaspersky solltest du mal schnell runterwerfen und durch Microsoft Security Essentials ersetzen denn Version 203 ist uralt und eine Internet Security war schon immer kontraproduktiv.

Außerdem betreibst du diesen Rechner noch mit Windows 7 - da besteht auch Handlungsbedarf, dann das ist bald EOL. Sprich du musst auf Windows 10 aktualisieren oder nimmst ein aktuelles Linux.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 08.10.2018, 13:16   #5
MattiSchl
 
Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden - Standard

Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden



Zitat:
Zitat von cosinus Beitrag anzeigen
hi,

man sollte auch mal lernen, zu unterschieden was relevante und eher unwichtige Funde sind. Alle Funde in irgendwelchen Mails sind völlig irrlevant, weil die Mails da einfach nur inaktiv herumlungern.

Wenn aber irgendwo anders im Dateisystem Funde sind, sollte man die sich genauer ansehen. Solange nur Mails vom AV angekreidet werden ist alles okay, löschen und gut ist. Da muss man kein Sicherheitsproblem draus konstruieren.
Ah, ok. Dann bin ich wirklich beruhigt, so etwas hatte ich in all den Jahren halt noch nie. Danke.

Zitat:
Zitat von cosinus Beitrag anzeigen

BTW: Kaspersky solltest du mal schnell runterwerfen und durch Microsoft Security Essentials ersetzen denn Version 203 ist uralt und eine Internet Security war schon immer kontraproduktiv.
Jawoll, mache ich. Danke für den Tipp.

Zitat:
Zitat von cosinus Beitrag anzeigen
Außerdem betreibst du diesen Rechner noch mit Windows 7 - da besteht auch Handlungsbedarf, dann das ist bald EOL. Sprich du musst auf Windows 10 aktualisieren oder nimmst ein aktuelles Linux.
Tja, das muss wohl bald sein. Mir graut ein wenig davor. Aber gut - das werde ich mir für die Weihnachtszeit vornehmen :-)

Vielen Dank für die Unterstützung!


Antwort

Themen zu Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden
adware, alert, anlage, beseitigung, cpu, datensicherung, defender, firefox, flash player, geforce, gelb, helper, internet, internet explorer, kaspersky, malware, monitor, nvidia, programme, registry, scan, security, server, software, symantec, trojaner




Ähnliche Themen: Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden


  1. Kaspersky Internet Security findet Trojaner in Email
    Plagegeister aller Art und deren Bekämpfung - 16.04.2017 (2)
  2. Win7 64bit - Spyware.Zbot.ED bzw. HEUR/QVM03.0.Malware.Gen gefunden durch Malwarebytes bzw. 360 Internet Security
    Log-Analyse und Auswertung - 19.12.2014 (11)
  3. Windows 7: Kaspersky Internet Security 2013 findet Trojaner HEUR:Exploit.Java.CVE-2013-1493.gen
    Log-Analyse und Auswertung - 20.11.2013 (57)
  4. HEUR:EXPLOIT.Java.CVE-2013-1493a - 3 Mal Maleware von Kaspersky gefunden
    Log-Analyse und Auswertung - 23.08.2013 (23)
  5. XPOST Wie Kaspersky Internet Security 2013 WhiteList deaktivieren?
    Mülltonne - 24.07.2013 (5)
  6. Internet Security 2013 Pro Problem
    Plagegeister aller Art und deren Bekämpfung - 18.06.2013 (7)
  7. Bitdefender Internet Security 2013 Problem
    Antiviren-, Firewall- und andere Schutzprogramme - 16.05.2013 (1)
  8. Exploit.Java.CVE-2013-0422d von Kaspersky gefunden und gelöscht/desinfiziert. Was nun?
    Log-Analyse und Auswertung - 04.03.2013 (14)
  9. Vista Internet Security 2013 entfernen
    Anleitungen, FAQs & Links - 11.01.2013 (2)
  10. Win 7 Internet Security 2013 entfernen
    Anleitungen, FAQs & Links - 11.01.2013 (2)
  11. XP Internet Security 2013 entfernen
    Anleitungen, FAQs & Links - 11.01.2013 (2)
  12. Live Security Platinum hat zugschlagen - Win7 64bit Pro
    Plagegeister aller Art und deren Bekämpfung - 24.09.2012 (16)
  13. Mehrere Trojaner (Zbot) nach Live Security Platimun-Befall gefunden
    Plagegeister aller Art und deren Bekämpfung - 18.09.2012 (9)
  14. Kaspersky 2013: "Sichere Tastatur" nur für Security-Suite
    Nachrichten - 29.08.2012 (0)
  15. Trojaner; Sparkasse (im Forum gefunden aber nichts verstanden); Win7 64bit
    Plagegeister aller Art und deren Bekämpfung - 02.03.2011 (10)
  16. Windows Security Alert / Mehrere Trojaner gefunden u.a. Trojan-Spy.Win32.GreenScreen
    Plagegeister aller Art und deren Bekämpfung - 01.09.2008 (12)
  17. Mehrere Viren, Backdoors, etc (welche sind das?)
    Plagegeister aller Art und deren Bekämpfung - 24.08.2004 (5)

Zum Thema Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden - Hallo, nachdem ich am 6.10. einige Tausend Mails eines uralten Mail-Accounts abgerufen hatte, habe ich mir leider auch Einiges eingefangen, ich habe aber keinerlei Anhänge geöffnet. Kaspersky meldete mehrere Sachen - Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden...
Archiv
Du betrachtest: Win7, 64bit: Kaspersky Internet Security 2013 hat mehrere Trojaner /Backdoors gefunden auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.